Vulnerability-Lookup

CVE-2026-33810 (GCVE-0-2026-33810)

Vulnerability from cvelistv5 – Published: 2026-04-08 01:06 – Updated: 2026-04-20 17:23

Title

Case-sensitive excludedSubtrees name constraints cause Auth Bypass in crypto/x509

Summary

When verifying a certificate chain containing excluded DNS constraints, these constraints are not correctly applied to wildcard DNS SANs which use a different case than the constraint. This only affects validation of otherwise trusted certificate chains, issued by a root CA in the VerifyOptions.Roots CertPool, or in the system certificate pool.

Severity

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

SSVC

Exploitation: none Automatable: yes Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-295 - Improper Certificate Validation

Assigner

References

6 references

URL	Tags
https://go.dev/cl/763763
https://go.dev/issue/78332
https://groups.google.com/g/golang-announce/c/0uY…
https://pkg.go.dev/vuln/GO-2026-4866
http://www.openwall.com/lists/oss-security/2026/04/19/4
http://www.openwall.com/lists/oss-security/2026/04/20/1

Impacted products

1 product

Vendor	Product	Version
Go standard library	crypto/x509	Affected: 1.26.0-0 , < 1.26.2 (semver)

Credits

Riyas from Saintgits College of Engineering k1rnt @1seal

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "NONE",
              "baseScore": 7.5,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "NONE",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2026-33810",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-04-13T17:48:57.879958Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-04-13T18:20:37.411Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2026-04-20T17:23:21.823Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "url": "http://www.openwall.com/lists/oss-security/2026/04/19/4"
          },
          {
            "url": "http://www.openwall.com/lists/oss-security/2026/04/20/1"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://pkg.go.dev",
          "defaultStatus": "unaffected",
          "packageName": "crypto/x509",
          "product": "crypto/x509",
          "programRoutines": [
            {
              "name": "newDNSConstraints"
            },
            {
              "name": "dnsConstraints.query"
            },
            {
              "name": "Certificate.Verify"
            }
          ],
          "vendor": "Go standard library",
          "versions": [
            {
              "lessThan": "1.26.2",
              "status": "affected",
              "version": "1.26.0-0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "Riyas from Saintgits College of Engineering"
        },
        {
          "lang": "en",
          "value": "k1rnt"
        },
        {
          "lang": "en",
          "value": "@1seal"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "When verifying a certificate chain containing excluded DNS constraints, these constraints are not correctly applied to wildcard DNS SANs which use a different case than the constraint. This only affects validation of otherwise trusted certificate chains, issued by a root CA in the VerifyOptions.Roots CertPool, or in the system certificate pool."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "CWE-295: Improper Certificate Validation",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-08T01:06:56.546Z",
        "orgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
        "shortName": "Go"
      },
      "references": [
        {
          "url": "https://go.dev/cl/763763"
        },
        {
          "url": "https://go.dev/issue/78332"
        },
        {
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "url": "https://pkg.go.dev/vuln/GO-2026-4866"
        }
      ],
      "title": "Case-sensitive excludedSubtrees name constraints cause Auth Bypass in crypto/x509"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
    "assignerShortName": "Go",
    "cveId": "CVE-2026-33810",
    "datePublished": "2026-04-08T01:06:56.546Z",
    "dateReserved": "2026-03-23T20:35:32.814Z",
    "dateUpdated": "2026-04-20T17:23:21.823Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2026-33810",
      "date": "2026-06-07",
      "epss": "0.00013",
      "percentile": "0.02379"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2026-33810\",\"sourceIdentifier\":\"security@golang.org\",\"published\":\"2026-04-08T02:16:03.950\",\"lastModified\":\"2026-04-20T18:16:26.813\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"When verifying a certificate chain containing excluded DNS constraints, these constraints are not correctly applied to wildcard DNS SANs which use a different case than the constraint. This only affects validation of otherwise trusted certificate chains, issued by a root CA in the VerifyOptions.Roots CertPool, or in the system certificate pool.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N\",\"baseScore\":8.2,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":4.2},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-295\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.26.0\",\"versionEndExcluding\":\"1.26.2\",\"matchCriteriaId\":\"39FE9BAF-55E9-43AA-B14E-239E7EF1D65D\"}]}]}],\"references\":[{\"url\":\"https://go.dev/cl/763763\",\"source\":\"security@golang.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://go.dev/issue/78332\",\"source\":\"security@golang.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Release Notes\"]},{\"url\":\"https://pkg.go.dev/vuln/GO-2026-4866\",\"source\":\"security@golang.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2026/04/19/4\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2026/04/20/1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"http://www.openwall.com/lists/oss-security/2026/04/19/4\"}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2026-04-19T22:08:53.727Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-33810\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-04-13T17:48:57.879958Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-04-13T17:48:52.707Z\"}}], \"cna\": {\"title\": \"Case-sensitive excludedSubtrees name constraints cause Auth Bypass in crypto/x509\", \"credits\": [{\"lang\": \"en\", \"value\": \"Riyas from Saintgits College of Engineering\"}, {\"lang\": \"en\", \"value\": \"k1rnt\"}, {\"lang\": \"en\", \"value\": \"@1seal\"}], \"affected\": [{\"vendor\": \"Go standard library\", \"product\": \"crypto/x509\", \"versions\": [{\"status\": \"affected\", \"version\": \"1.26.0-0\", \"lessThan\": \"1.26.2\", \"versionType\": \"semver\"}], \"packageName\": \"crypto/x509\", \"collectionURL\": \"https://pkg.go.dev\", \"defaultStatus\": \"unaffected\", \"programRoutines\": [{\"name\": \"newDNSConstraints\"}, {\"name\": \"dnsConstraints.query\"}, {\"name\": \"Certificate.Verify\"}]}], \"references\": [{\"url\": \"https://go.dev/cl/763763\"}, {\"url\": \"https://go.dev/issue/78332\"}, {\"url\": \"https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU\"}, {\"url\": \"https://pkg.go.dev/vuln/GO-2026-4866\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"When verifying a certificate chain containing excluded DNS constraints, these constraints are not correctly applied to wildcard DNS SANs which use a different case than the constraint. This only affects validation of otherwise trusted certificate chains, issued by a root CA in the VerifyOptions.Roots CertPool, or in the system certificate pool.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"description\": \"CWE-295: Improper Certificate Validation\"}]}], \"providerMetadata\": {\"orgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"shortName\": \"Go\", \"dateUpdated\": \"2026-04-08T01:06:56.546Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2026-33810\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-04-19T22:08:53.727Z\", \"dateReserved\": \"2026-03-23T20:35:32.814Z\", \"assignerOrgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"datePublished\": \"2026-04-08T01:06:56.546Z\", \"assignerShortName\": \"Go\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }
  }
}

RHSA-2026:13791

Vulnerability from csaf_redhat - Published: 2026-05-05 15:33 - Updated: 2026-06-08 07:55

Summary

Red Hat Security Advisory: RHACS 4.9.6 security and bug fix update

Severity

Important

Notes

Topic: Updated images are now available for Red Hat Advanced Cluster Security (RHACS), which typically include new features, bug fixes, and/or security patches.

Details: See the release notes (link in the references section) for a description of the fixes and enhancements in this particular release.

Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2026-25679

The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1286 - Improper Validation of Syntactic Correctness of Input

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x	—	Vendor Fix fix Workaround

Known not affected 41 products

Product	Version	Remediation
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64	—	Workaround

Threats

Impact Important

CVE-2026-29063

A flaw was found in Immutable.js, a library for persistent immutable data structures. This vulnerability, known as Prototype Pollution, allows an attacker with low privileges to inject unwanted properties into core JavaScript object prototypes without user interaction. By manipulating specific APIs such as mergeDeep(), mergeDeepWith(), merge(), Map.toJS(), and Map.toObject(), a remote attacker could potentially execute arbitrary code or cause a denial of service (DoS).

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-915 - Improperly Controlled Modification of Dynamically-Determined Object Attributes

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64	—	Vendor Fix fix
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64	—	Vendor Fix fix
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le	—	Vendor Fix fix
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x	—	Vendor Fix fix

Known not affected 41 products

Product	Identifier	Version	Remediation
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64		—

Threats

Impact Important

CVE-2026-32280

A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64	—	Vendor Fix fix
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64	—	Vendor Fix fix
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le	—	Vendor Fix fix
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x	—	Vendor Fix fix

Known not affected 41 products

Product	Identifier	Version	Remediation
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64		—

Threats

Impact Important

CVE-2026-32282

A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

CWE-367 - Time-of-check Time-of-use (TOCTOU) Race Condition

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x	—	Vendor Fix fix Workaround

Known not affected 41 products

Product	Version	Remediation
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64	—	Workaround

Threats

Impact Moderate

CVE-2026-33186

A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.

9.1 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

CWE-551 - Incorrect Behavior Order: Authorization Before Parsing and Canonicalization

Affected products

Fixed 8 products

Product	Version	Remediation
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x	—	Vendor Fix fix Workaround

Known not affected 37 products

Product	Version	Remediation
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64	—	Workaround

Threats

Impact Important

CVE-2026-33810

A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L

CWE-1289 - Improper Validation of Unsafe Equivalence in Input

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64	—	Vendor Fix fix
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64	—	Vendor Fix fix
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le	—	Vendor Fix fix
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x	—	Vendor Fix fix

Known not affected 41 products

Product	Identifier	Version	Remediation
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64		—
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64		—

Threats

Impact Important

CVE-2026-33815

A flaw was found in github.com/jackc/pgx. This memory-safety vulnerability could potentially lead to unexpected behavior or system instability.

8.3 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L

CWE-787 - Out-of-bounds Write

Affected products

Fixed 12 products

Product	Version	Remediation
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64	—	Vendor Fix fix Workaround

Known not affected 33 products

Product	Version	Remediation
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x	—	Workaround

Threats

Impact Important

CVE-2026-33816

A flaw was found in github.com/jackc/pgx, a PostgreSQL driver for Go. This memory-safety vulnerability could allow an attacker to cause various impacts, such as denial of service (DoS) or potentially arbitrary code execution, by exploiting memory corruption issues. The exact method of exploitation and specific consequences would depend on the nature of the memory corruption.

8.3 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L

CWE-787 - Out-of-bounds Write

Affected products

Fixed 12 products

Product	Version	Remediation
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64	—	Vendor Fix fix Workaround

Known not affected 33 products

Product	Version	Remediation
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x	—	Workaround

Threats

Impact Important

CVE-2026-34986

A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-131 - Incorrect Calculation of Buffer Size

Affected products

Fixed 12 products

Product	Version	Remediation
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64	—	Vendor Fix fix Workaround

Known not affected 33 products

Product	Version	Remediation
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x	—	Workaround

Threats

Impact Important

CVE-2026-35469

A flaw was found in the SPDY streaming code used by Kubelet, CRI-O, and kube-apiserver. An attacker with specific cluster roles, such as those allowing access to pod port forwarding, execution, or attachment, or node proxying, could exploit this vulnerability. This could lead to a Denial of Service (DoS) by causing the affected components to become unresponsive.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x	—	Vendor Fix fix Workaround

Known not affected 41 products

Product	Version	Remediation
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64	—	Workaround
Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64	—	Workaround

Threats

Impact Important

References

77 references

URL	Category
https://access.redhat.com/errata/RHSA-2026:13791	self
https://access.redhat.com/security/cve/CVE-2026-25679	external
https://access.redhat.com/security/cve/CVE-2026-29063	external
https://access.redhat.com/security/cve/CVE-2026-32280	external
https://access.redhat.com/security/cve/CVE-2026-32282	external
https://access.redhat.com/security/cve/CVE-2026-33186	external
https://access.redhat.com/security/cve/CVE-2026-33810	external
https://access.redhat.com/security/cve/CVE-2026-33815	external
https://access.redhat.com/security/cve/CVE-2026-33816	external
https://access.redhat.com/security/cve/CVE-2026-34986	external
https://access.redhat.com/security/cve/CVE-2026-35469	external
https://access.redhat.com/security/updates/classi…	external
https://docs.redhat.com/en/documentation/red_hat_…	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2026-25679	self
https://bugzilla.redhat.com/show_bug.cgi?id=2445356	external
https://www.cve.org/CVERecord?id=CVE-2026-25679	external
https://nvd.nist.gov/vuln/detail/CVE-2026-25679	external
https://go.dev/cl/752180	external
https://go.dev/issue/77578	external
https://groups.google.com/g/golang-announce/c/Edh…	external
https://pkg.go.dev/vuln/GO-2026-4601	external
https://access.redhat.com/security/cve/CVE-2026-29063	self
https://bugzilla.redhat.com/show_bug.cgi?id=2445291	external
https://www.cve.org/CVERecord?id=CVE-2026-29063	external
https://nvd.nist.gov/vuln/detail/CVE-2026-29063	external
https://github.com/immutable-js/immutable-js/rele…	external
https://github.com/immutable-js/immutable-js/rele…	external
https://github.com/immutable-js/immutable-js/rele…	external
https://github.com/immutable-js/immutable-js/secu…	external
https://access.redhat.com/security/cve/CVE-2026-32280	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456339	external
https://www.cve.org/CVERecord?id=CVE-2026-32280	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32280	external
https://go.dev/cl/758320	external
https://go.dev/issue/78282	external
https://groups.google.com/g/golang-announce/c/0uY…	external
https://pkg.go.dev/vuln/GO-2026-4947	external
https://access.redhat.com/security/cve/CVE-2026-32282	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456336	external
https://www.cve.org/CVERecord?id=CVE-2026-32282	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32282	external
https://go.dev/cl/763761	external
https://go.dev/issue/78293	external
https://pkg.go.dev/vuln/GO-2026-4864	external
https://access.redhat.com/security/cve/CVE-2026-33186	self
https://bugzilla.redhat.com/show_bug.cgi?id=2449833	external
https://www.cve.org/CVERecord?id=CVE-2026-33186	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33186	external
https://github.com/grpc/grpc-go/security/advisori…	external
https://access.redhat.com/security/cve/CVE-2026-33810	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456335	external
https://www.cve.org/CVERecord?id=CVE-2026-33810	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33810	external
https://go.dev/cl/763763	external
https://go.dev/issue/78332	external
https://pkg.go.dev/vuln/GO-2026-4866	external
https://access.redhat.com/security/cve/CVE-2026-33815	self
https://bugzilla.redhat.com/show_bug.cgi?id=2455975	external
https://www.cve.org/CVERecord?id=CVE-2026-33815	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33815	external
https://pkg.go.dev/vuln/GO-2026-4771	external
https://access.redhat.com/security/cve/CVE-2026-33816	self
https://bugzilla.redhat.com/show_bug.cgi?id=2455972	external
https://www.cve.org/CVERecord?id=CVE-2026-33816	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33816	external
https://pkg.go.dev/vuln/GO-2026-4772	external
https://access.redhat.com/security/cve/CVE-2026-34986	self
https://bugzilla.redhat.com/show_bug.cgi?id=2455470	external
https://www.cve.org/CVERecord?id=CVE-2026-34986	external
https://nvd.nist.gov/vuln/detail/CVE-2026-34986	external
https://github.com/go-jose/go-jose/security/advis…	external
https://pkg.go.dev/github.com/go-jose/go-jose/v4#…	external
https://access.redhat.com/security/cve/CVE-2026-35469	self
https://bugzilla.redhat.com/show_bug.cgi?id=2457729	external
https://www.cve.org/CVERecord?id=CVE-2026-35469	external
https://nvd.nist.gov/vuln/detail/CVE-2026-35469	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated images are now available for Red Hat Advanced Cluster Security\n(RHACS), which typically include new features, bug fixes, and/or\nsecurity patches.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "See the release notes (link in the references section) for a\ndescription of the fixes and enhancements in this particular release.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2026:13791",
        "url": "https://access.redhat.com/errata/RHSA-2026:13791"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-25679",
        "url": "https://access.redhat.com/security/cve/CVE-2026-25679"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-29063",
        "url": "https://access.redhat.com/security/cve/CVE-2026-29063"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-32280",
        "url": "https://access.redhat.com/security/cve/CVE-2026-32280"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-32282",
        "url": "https://access.redhat.com/security/cve/CVE-2026-32282"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-33186",
        "url": "https://access.redhat.com/security/cve/CVE-2026-33186"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-33810",
        "url": "https://access.redhat.com/security/cve/CVE-2026-33810"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-33815",
        "url": "https://access.redhat.com/security/cve/CVE-2026-33815"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-33816",
        "url": "https://access.redhat.com/security/cve/CVE-2026-33816"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-34986",
        "url": "https://access.redhat.com/security/cve/CVE-2026-34986"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-35469",
        "url": "https://access.redhat.com/security/cve/CVE-2026-35469"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/",
        "url": "https://access.redhat.com/security/updates/classification/"
      },
      {
        "category": "external",
        "summary": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.9/html-single/release_notes/index#about-this-release-496_release-notes-49",
        "url": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.9/html-single/release_notes/index#about-this-release-496_release-notes-49"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_13791.json"
      }
    ],
    "title": "Red Hat Security Advisory: RHACS 4.9.6 security and bug fix update",
    "tracking": {
      "current_release_date": "2026-06-08T07:55:36+00:00",
      "generator": {
        "date": "2026-06-08T07:55:36+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.8.2"
        }
      },
      "id": "RHSA-2026:13791",
      "initial_release_date": "2026-05-05T15:33:29+00:00",
      "revision_history": [
        {
          "date": "2026-05-05T15:33:29+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2026-05-13T08:38:59+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-06-08T07:55:36+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Advanced Cluster Security for Kubernetes 4.9",
                "product": {
                  "name": "Red Hat Advanced Cluster Security for Kubernetes 4.9",
                  "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:advanced_cluster_security:4.9::el8"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Advanced Cluster Security for Kubernetes"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3A053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1777986630"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-collector-rhel8@sha256%3A3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1776420414"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-main-rhel8@sha256%3A87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1777986630"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-rhel8-operator@sha256%3Ad76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1777986630"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-operator-bundle@sha256%3A8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1777986630"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3Ab008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1777986630"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3Acf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1776727358"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3A4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1776727358"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3A9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1776727358"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3A6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1776727358"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3Aab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1777986630"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3A929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1777986630"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "amd64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3Abab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1777986630"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-collector-rhel8@sha256%3Ae188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1776420414"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-main-rhel8@sha256%3A21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1777986630"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-rhel8-operator@sha256%3A45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1777986630"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3Abed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1777986630"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3A9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1776727358"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3Aeb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1776727358"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3A52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1776727358"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3Aaf7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1776727358"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3A979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1777986630"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3Ac91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1777986630"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "arm64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3A70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1777986630"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-collector-rhel8@sha256%3A668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1776420414"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-main-rhel8@sha256%3Ab13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1777986630"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-rhel8-operator@sha256%3Ad9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1777986630"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3A3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1777986630"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3A6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1776727358"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3Ac78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1776727358"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3A658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1776727358"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3A84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1776727358"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3A51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1777986630"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3A4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1777986630"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3A39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1777986630"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-collector-rhel8@sha256%3A3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1776420414"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-main-rhel8@sha256%3Afb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1777986630"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-rhel8-operator@sha256%3A0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1777986630"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3Acca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1777986630"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3A093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1776727358"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3A2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1776727358"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3A4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1776727358"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3Ade2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1776727358"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3A470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1777986630"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
                "product": {
                  "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
                  "product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3Afb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1777986630"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
          "product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
        },
        "product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64",
        "relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2026-25679",
      "cwe": {
        "id": "CWE-1286",
        "name": "Improper Validation of Syntactic Correctness of Input"
      },
      "discovery_date": "2026-03-06T22:02:11.567841+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2445356"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x"
        ],
        "known_not_affected": [
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-25679"
        },
        {
          "category": "external",
          "summary": "RHBZ#2445356",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/752180",
          "url": "https://go.dev/cl/752180"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/77578",
          "url": "https://go.dev/issue/77578"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
          "url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4601",
          "url": "https://pkg.go.dev/vuln/GO-2026-4601"
        }
      ],
      "release_date": "2026-03-06T21:28:14.211000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-05T15:33:29+00:00",
          "details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
          "product_ids": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:13791"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
    },
    {
      "cve": "CVE-2026-29063",
      "cwe": {
        "id": "CWE-915",
        "name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes"
      },
      "discovery_date": "2026-03-06T19:00:57.982727+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2445291"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Immutable.js, a library for persistent immutable data structures. This vulnerability, known as Prototype Pollution, allows an attacker with low privileges to inject unwanted properties into core JavaScript object prototypes without user interaction. By manipulating specific APIs such as mergeDeep(), mergeDeepWith(), merge(), Map.toJS(), and Map.toObject(), a remote attacker could potentially execute arbitrary code or cause a denial of service (DoS).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "immutable-js: Immutable.js: Arbitrary code execution via Prototype Pollution",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Exploitation of this vulnerability requires that an attacker is able to provide arbitrary data to clients of this library in a way that calls the affected functions with data the attacker controls. In most deployments, the ability to provide data in this fashion requires that an attacker has some degree of privileges to access the affected applications.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x"
        ],
        "known_not_affected": [
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-29063"
        },
        {
          "category": "external",
          "summary": "RHBZ#2445291",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445291"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-29063",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-29063"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-29063",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-29063"
        },
        {
          "category": "external",
          "summary": "https://github.com/immutable-js/immutable-js/releases/tag/v3.8.3",
          "url": "https://github.com/immutable-js/immutable-js/releases/tag/v3.8.3"
        },
        {
          "category": "external",
          "summary": "https://github.com/immutable-js/immutable-js/releases/tag/v4.3.8",
          "url": "https://github.com/immutable-js/immutable-js/releases/tag/v4.3.8"
        },
        {
          "category": "external",
          "summary": "https://github.com/immutable-js/immutable-js/releases/tag/v5.1.5",
          "url": "https://github.com/immutable-js/immutable-js/releases/tag/v5.1.5"
        },
        {
          "category": "external",
          "summary": "https://github.com/immutable-js/immutable-js/security/advisories/GHSA-wf6x-7x77-mvgw",
          "url": "https://github.com/immutable-js/immutable-js/security/advisories/GHSA-wf6x-7x77-mvgw"
        }
      ],
      "release_date": "2026-03-06T18:25:22.438000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-05T15:33:29+00:00",
          "details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
          "product_ids": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:13791"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "immutable-js: Immutable.js: Arbitrary code execution via Prototype Pollution"
    },
    {
      "cve": "CVE-2026-32280",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2026-04-08T02:01:19.572351+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456339"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x"
        ],
        "known_not_affected": [
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456339",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32280",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/758320",
          "url": "https://go.dev/cl/758320"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78282",
          "url": "https://go.dev/issue/78282"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4947",
          "url": "https://pkg.go.dev/vuln/GO-2026-4947"
        }
      ],
      "release_date": "2026-04-08T01:06:58.595000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-05T15:33:29+00:00",
          "details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
          "product_ids": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:13791"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building"
    },
    {
      "cve": "CVE-2026-32282",
      "cwe": {
        "id": "CWE-367",
        "name": "Time-of-check Time-of-use (TOCTOU) Race Condition"
      },
      "discovery_date": "2026-04-08T02:01:12.683211+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456336"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs access to the system and the required permissions to create a symbolic link. Additionally, the attacker must swap the target file with a symbolic link in the exact window after the `Root.Chmod` function checks its target but before acting. Due to these conditions, this flaw has been rated with a moderate severity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x"
        ],
        "known_not_affected": [
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456336",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32282",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/763761",
          "url": "https://go.dev/cl/763761"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78293",
          "url": "https://go.dev/issue/78293"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4864",
          "url": "https://pkg.go.dev/vuln/GO-2026-4864"
        }
      ],
      "release_date": "2026-04-08T01:06:55.953000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-05T15:33:29+00:00",
          "details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
          "product_ids": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:13791"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root"
    },
    {
      "cve": "CVE-2026-33186",
      "cwe": {
        "id": "CWE-551",
        "name": "Incorrect Behavior Order: Authorization Before Parsing and Canonicalization"
      },
      "discovery_date": "2026-03-20T23:02:27.802640+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2449833"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x"
        ],
        "known_not_affected": [
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33186"
        },
        {
          "category": "external",
          "summary": "RHBZ#2449833",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33186",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33186"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186"
        },
        {
          "category": "external",
          "summary": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3",
          "url": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3"
        }
      ],
      "release_date": "2026-03-20T22:23:32.147000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-05T15:33:29+00:00",
          "details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
          "product_ids": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:13791"
        },
        {
          "category": "workaround",
          "details": "To mitigate this issue, implement infrastructure-level normalization to ensure all incoming HTTP/2 `:path` headers are properly formatted with a leading slash before reaching the gRPC-Go server. This can be achieved by configuring a reverse proxy or API gateway to validate and normalize the `:path` header. Ensure that any such intermediary is properly configured and restarted to apply the changes, which may temporarily impact service availability.",
          "product_ids": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 9.1,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation"
    },
    {
      "cve": "CVE-2026-33810",
      "cwe": {
        "id": "CWE-1289",
        "name": "Improper Validation of Unsafe Equivalence in Input"
      },
      "discovery_date": "2026-04-08T02:01:09.100830+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456335"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x"
        ],
        "known_not_affected": [
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456335",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456335"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33810",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/763763",
          "url": "https://go.dev/cl/763763"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78332",
          "url": "https://go.dev/issue/78332"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4866",
          "url": "https://pkg.go.dev/vuln/GO-2026-4866"
        }
      ],
      "release_date": "2026-04-08T01:06:56.546000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-05T15:33:29+00:00",
          "details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
          "product_ids": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:13791"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application"
    },
    {
      "cve": "CVE-2026-33815",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "discovery_date": "2026-04-07T16:01:25.130006+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2455975"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in github.com/jackc/pgx. This memory-safety vulnerability could potentially lead to unexpected behavior or system instability.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "github.com/jackc/pgx/v5: github.com/jackc/pgx: Memory-safety vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
        ],
        "known_not_affected": [
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33815"
        },
        {
          "category": "external",
          "summary": "RHBZ#2455975",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455975"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33815",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33815"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33815",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33815"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4771",
          "url": "https://pkg.go.dev/vuln/GO-2026-4771"
        }
      ],
      "release_date": "2026-04-07T15:19:24.344000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-05T15:33:29+00:00",
          "details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
          "product_ids": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:13791"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 8.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L",
            "version": "3.1"
          },
          "products": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "github.com/jackc/pgx/v5: github.com/jackc/pgx: Memory-safety vulnerability"
    },
    {
      "cve": "CVE-2026-33816",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "discovery_date": "2026-04-07T16:01:14.142946+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2455972"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in github.com/jackc/pgx, a PostgreSQL driver for Go. This memory-safety vulnerability could allow an attacker to cause various impacts, such as denial of service (DoS) or potentially arbitrary code execution, by exploiting memory corruption issues. The exact method of exploitation and specific consequences would depend on the nature of the memory corruption.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "github.com/jackc/pgx/v5: github.com/jackc/pgx: Memory-safety vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
        ],
        "known_not_affected": [
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33816"
        },
        {
          "category": "external",
          "summary": "RHBZ#2455972",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455972"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33816",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33816"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33816",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33816"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4772",
          "url": "https://pkg.go.dev/vuln/GO-2026-4772"
        }
      ],
      "release_date": "2026-04-07T15:19:24.529000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-05T15:33:29+00:00",
          "details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
          "product_ids": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:13791"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 8.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L",
            "version": "3.1"
          },
          "products": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "github.com/jackc/pgx/v5: github.com/jackc/pgx: Memory-safety vulnerability"
    },
    {
      "cve": "CVE-2026-34986",
      "cwe": {
        "id": "CWE-131",
        "name": "Incorrect Calculation of Buffer Size"
      },
      "discovery_date": "2026-04-06T17:01:34.639203+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2455470"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
        ],
        "known_not_affected": [
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-34986"
        },
        {
          "category": "external",
          "summary": "RHBZ#2455470",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455470"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-34986",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-34986"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986"
        },
        {
          "category": "external",
          "summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8",
          "url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants",
          "url": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants"
        }
      ],
      "release_date": "2026-04-06T16:22:45.353000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-05T15:33:29+00:00",
          "details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
          "product_ids": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:13791"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object"
    },
    {
      "cve": "CVE-2026-35469",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2026-04-13T03:52:35+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2457729"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the SPDY streaming code used by Kubelet, CRI-O, and kube-apiserver. An attacker with specific cluster roles, such as those allowing access to pod port forwarding, execution, or attachment, or node proxying, could exploit this vulnerability. This could lead to a Denial of Service (DoS) by causing the affected components to become unresponsive.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Kubelet: CRI-O: kube-apiserver: Kubelet, CRI-O, kube-apiserver: Denial of Service via SPDY streaming code",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This is an Important denial of service flaw affecting OpenShift Container Platform. An attacker with specific elevated cluster roles, such as those permitting pod port forwarding, execution, attachment, or node proxying, could exploit a vulnerability in the SPDY streaming code of Kubelet, CRI-O, and kube-apiserver, leading to unresponsiveness of these critical components.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x"
        ],
        "known_not_affected": [
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
          "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-35469"
        },
        {
          "category": "external",
          "summary": "RHBZ#2457729",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2457729"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-35469",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-35469"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-35469",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-35469"
        }
      ],
      "release_date": "2026-04-13T23:59:59+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-05T15:33:29+00:00",
          "details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
          "product_ids": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:13791"
        },
        {
          "category": "workaround",
          "details": "To mitigate this issue, review and restrict the assignment of Kubernetes cluster roles `pods/portforward (create)`, `pods/exec (create)`, `pods/attach (create)`, and `nodes/proxy (get/create)` to untrusted users or service accounts. Ensure that only authorized and necessary entities possess these permissions. Modifying RBAC policies can impact the functionality of applications and services that rely on these permissions; careful testing is recommended.",
          "product_ids": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:053ed22d937f9eb84e634c015d41bb2078a7045caaecca91ff92d6cc762a2f31_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:39d0e4f3d7161d55db772e78503e8f17384eb7269e263b220e904e4555d7223c_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:70343ad0d6352ad4e6e8a04bfc76dba5656cf0f840e8651e4bf831653bad8f2a_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:bab3d4d0ad795bb8b5e07f1473bc460d6911322f2ba43d929fcb716d563a8c67_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3081e1b11a6ab181f20300c2c4617babff90b4fa061dba89f24e5f3c71b94c29_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:3277909d639b8e9cdd222cf875f3c8d9930f82111287e792a1acfc753db3af7c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:668db20b1ddb96e9cdd887d2ad623808d80ebaca3086b0b15c30c239452ad60d_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:e188ed2d598f739ff4c015dcaac60df89a1c2df50ae06e3389c1cbabc6464e62_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:21abe57c756f824d9daa24bb897878bcde142430d8b780d815e55334e9566023_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:87698d1f001a1c754e8617b8618d6ef6e75078fc93e579a7323b8ea5037893dc_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:b13ee7fb1b662bc1bafecb8a80cbf09caa0c4e258c8c66030b4ac75689a2493b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:fb4ef587618f9dde307df362b098de3e42c26373eb8d83bb344ea1847e467fd4_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:8f2b6efc9e8be5db2e175daef5d0f95ab2bd585dc20df56d844366946dd60057_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:0f772de52e7f61abe0e18c4144bbaf2f0d288708929f0d1462934667fca86677_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:45d29cff5bcd8969fdc83dc6cf61eb8c9c7f8f7ef74604abcf2fe481a84ccb31_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d76922eb53bc1c337cb0452a84b76aafc8b92f404ddb1ae2d6a0b45416faf4e9_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:d9cce1e78fe7dbede26dfd8e4249aaa2b12e6f276161eb1ec4f3e660b9b66f1b_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3a6108facf8ba76db9ebf5cdc468a6edc5c305b92c25f0013c64b8b9f7a90a30_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:b008563e865b25be2ea41f151d0262c2ab37849ed46a558d8a4f7be0c901a76c_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bed0a72efbf5407e4b4b496aeb9f6cdc6abd9c44f9b7dccf0b297788c9b9973b_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cca311b28042c97639528fe096b32a3bf88e6aab1dde5884c6cd632b084a33d8_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2f6cd5e1c78d96e679f928356e357f2a396c08252b3552dd8a20780f49332cc2_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4d996dc985d8888cc38d9b45f9e37e6c912f06f7fd10c21f3997c530ec73967a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c78e7bdc6e9d89d36915a3f1da96a97cbf12709ab3be4ef83dcaa6d5c557b518_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:eb611e2c05cb3d497cd9c40cbee965b1fa48eb32553aaa5bbffd55354be7a8e7_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4e5925a32d137520a161f28caba27e9bcaec0a7d34b098e4862ccbf987e38456_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:52b0908701e6671c167f1988313f367790ee4042a72b7cfc4d22b77b2805f34d_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:658740855eb57464629df0632fa1ba65f3788b1297c079d83e4c5c3dfeaa5196_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:9a9495c3e2812d7cb45e1731ab72f22170a30286948d49260b8e2468d4d25079_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:093c816ee564a4192c965d723977060cc17ad9f88060c093c183c3e22860ac2d_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:6d669f53e340da8ce6eabee5c091171cb08aa708a4b2dade9a0326758d94a8d9_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9d3b2f8d659bdb3ae4089e415b688fca4fd3ed36b91343e1cd80438f58849358_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:cf766b161e4d6adb21ad0b207351ab6184fe86087b1e7867e53e8cf240449cc7_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6b9fa23a848d1972499d9eea7f6e9f373e4719b1358301c307a687107ecdc63a_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:84e071142ffc1ddbe3e2378a734f62847a77ab821bbdf4f25d27c91dc93f4ec3_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:af7b9c031bd6e0f24947aa8cfb312908b8fe3cd5817ab5d803d63951a53bc4e3_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:de2cd071787960a9396de207009187e5f2e35305abe2c66b92aa7b8d6eb53fbc_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4bb114727a3d8f2a7f6cac8c557ab850763543329d41dbf47d14d8cfc719fe03_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:929e1d254ecccf8c0e629830ba9d8d91857134e3b14e9f521107c27fb6864440_amd64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:c91944bbd11a239f893044652d729bb45f79b0836710bb113ed8341aef3dc9b5_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:fb8a89fc33dbb2f342ee9d90141bf99fc0a9dadeacacd5c46617f43e972315a1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:470d6d87a4fe354c3d15f97de02898e47035eb36502530ba1e5521f92a3aacb1_s390x",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:51384fc6b7b9356f090931954781a62732b92ea364f2605b4bf8fa304cf32468_ppc64le",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:979426f23b6805ec1d7c889ebc0a0519914700995c2d5aa946467ccf8ca7f686_arm64",
            "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:ab26ef920a5a06558e891bdbf6258bd01d371d06f955234b77538c654db336b7_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "Kubelet: CRI-O: kube-apiserver: Kubelet, CRI-O, kube-apiserver: Denial of Service via SPDY streaming code"
    }
  ]
}

RHSA-2026:14391

Vulnerability from csaf_redhat - Published: 2026-05-06 21:10 - Updated: 2026-06-08 06:01

Summary

Red Hat Security Advisory: Red Hat build of Cryostat security update

Severity

Important

Notes

Topic: An update is now available for the Red Hat build of Cryostat 4 on RHEL 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: An update is now available for the Red Hat build of Cryostat 4 on RHEL 9. Security Fix(es): * crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages (CVE-2026-32283) * crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application (CVE-2026-33810) * golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root (CVE-2026-32282) * crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2026-32280

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 2 products

Product	Identifier	Version	Remediation
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95938fed3fcf7e786bcc418e5cc05999519336dd9b1ae26ac09b87d122244ce9_amd64		—	Vendor Fix fix
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95c41160b310ef0c54ddab4fd77dfaf02faf62de58d15b3a90b375c76226181c_arm64		—	Vendor Fix fix

Known not affected 18 products

Product	Identifier	Version	Remediation
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f0b40e2312ae2659f9d0092a98488d7c5965ab33efe759ce78778b1b8173c5d6_arm64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f2aeac65f02f6d21b497972087a808104100b547d92ab1a5656d91b48262c97d_amd64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:231d5f0956e242c675b2f33df01d7a1fd9f44c9ee80f2b05731a60e0022e1483_arm64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:8c6ca482631927526d6e8d1ca455cffc379d798c7d8d323c699e7ffc5ff44c88_amd64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:2e68b360df2e9532458e97127a16e10765c3e7bbe4842d6ad48febca834af1f2_arm64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:e0092c9adc9bf671729ec2a4682f3c53f1f12a9fdf09edf5f5c4b65172e04742_amd64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:03b2d5ec8747fa2984b4659b0d61c5dd67dd729c6957918752b8033a3e6f40ec_arm64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:5d356babef136df86f11f77ec595d9e9cc9a7f246eeb458e062757e273a9e803_amd64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:5479230ed1ace22b8f00141796326cae84a772b1b6f14f52a58366a9695266da_amd64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:b2a02cd673f7dd96218aa92a11bb924eb4538060f77fb8e773d0f13f5bdec55f_arm64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:71ff61b5a765e62ef16bd633580dc9d49e8fcb46a68c3ee0e831d161b598956a_arm64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:fb4b8f8338d6f3b7458ec9643d49175333a69d15650f026a1038836668f0c076_amd64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:b3c9c59b462a94d181b51ee7419c5e89618da06bb70d7905f7efeeca12e57c6b_amd64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:c4a8388737cd5330176421462353b4253dcbf4c7dc963b644b5d122cda3022d1_arm64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:548ef61d03e7b861bed4b2f86cb826add8fcf13251d34562a4ac78302eae9d88_amd64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:6daca9dff828394e3181355526276fdc6448eace218fc3c30b63b992bee5424d_arm64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:914d1985a1944cf4c25530b67aad321e7a8d6f28cfb7793b703b69456deecf8a_arm64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:965a1522fc45c8aeff07508ba9291919bd007318da0511ee2ed4e4c18190ec71_amd64		—

Threats

Impact Important

CVE-2026-32282

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

CWE-367 - Time-of-check Time-of-use (TOCTOU) Race Condition

Affected products

Fixed 2 products

Product	Identifier	Version	Remediation
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95938fed3fcf7e786bcc418e5cc05999519336dd9b1ae26ac09b87d122244ce9_amd64		—	Vendor Fix fix Workaround
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95c41160b310ef0c54ddab4fd77dfaf02faf62de58d15b3a90b375c76226181c_arm64		—	Vendor Fix fix Workaround

Known not affected 18 products

Product	Version	Remediation
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f0b40e2312ae2659f9d0092a98488d7c5965ab33efe759ce78778b1b8173c5d6_arm64	—	Workaround
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f2aeac65f02f6d21b497972087a808104100b547d92ab1a5656d91b48262c97d_amd64	—	Workaround
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:231d5f0956e242c675b2f33df01d7a1fd9f44c9ee80f2b05731a60e0022e1483_arm64	—	Workaround
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:8c6ca482631927526d6e8d1ca455cffc379d798c7d8d323c699e7ffc5ff44c88_amd64	—	Workaround
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:2e68b360df2e9532458e97127a16e10765c3e7bbe4842d6ad48febca834af1f2_arm64	—	Workaround
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:e0092c9adc9bf671729ec2a4682f3c53f1f12a9fdf09edf5f5c4b65172e04742_amd64	—	Workaround
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:03b2d5ec8747fa2984b4659b0d61c5dd67dd729c6957918752b8033a3e6f40ec_arm64	—	Workaround
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:5d356babef136df86f11f77ec595d9e9cc9a7f246eeb458e062757e273a9e803_amd64	—	Workaround
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:5479230ed1ace22b8f00141796326cae84a772b1b6f14f52a58366a9695266da_amd64	—	Workaround
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:b2a02cd673f7dd96218aa92a11bb924eb4538060f77fb8e773d0f13f5bdec55f_arm64	—	Workaround
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:71ff61b5a765e62ef16bd633580dc9d49e8fcb46a68c3ee0e831d161b598956a_arm64	—	Workaround
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:fb4b8f8338d6f3b7458ec9643d49175333a69d15650f026a1038836668f0c076_amd64	—	Workaround
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:b3c9c59b462a94d181b51ee7419c5e89618da06bb70d7905f7efeeca12e57c6b_amd64	—	Workaround
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:c4a8388737cd5330176421462353b4253dcbf4c7dc963b644b5d122cda3022d1_arm64	—	Workaround
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:548ef61d03e7b861bed4b2f86cb826add8fcf13251d34562a4ac78302eae9d88_amd64	—	Workaround
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:6daca9dff828394e3181355526276fdc6448eace218fc3c30b63b992bee5424d_arm64	—	Workaround
Unresolved product id: 9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:914d1985a1944cf4c25530b67aad321e7a8d6f28cfb7793b703b69456deecf8a_arm64	—	Workaround
Unresolved product id: 9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:965a1522fc45c8aeff07508ba9291919bd007318da0511ee2ed4e4c18190ec71_amd64	—	Workaround

Threats

Impact Moderate

CVE-2026-32283

A flaw was found in the `crypto/tls` package within the Go (golang) standard library, specifically affecting TLS 1.3 connections. A remote attacker can exploit this vulnerability by sending multiple key update messages in a single record after the handshake. This can cause the connection to deadlock, leading to uncontrolled consumption of resources and ultimately a denial of service (DoS).

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-764 - Multiple Locks of a Critical Resource

Affected products

Fixed 2 products

Product	Identifier	Version	Remediation
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95938fed3fcf7e786bcc418e5cc05999519336dd9b1ae26ac09b87d122244ce9_amd64		—	Vendor Fix fix
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95c41160b310ef0c54ddab4fd77dfaf02faf62de58d15b3a90b375c76226181c_arm64		—	Vendor Fix fix

Known not affected 18 products

Product	Identifier	Version	Remediation
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f0b40e2312ae2659f9d0092a98488d7c5965ab33efe759ce78778b1b8173c5d6_arm64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f2aeac65f02f6d21b497972087a808104100b547d92ab1a5656d91b48262c97d_amd64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:231d5f0956e242c675b2f33df01d7a1fd9f44c9ee80f2b05731a60e0022e1483_arm64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:8c6ca482631927526d6e8d1ca455cffc379d798c7d8d323c699e7ffc5ff44c88_amd64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:2e68b360df2e9532458e97127a16e10765c3e7bbe4842d6ad48febca834af1f2_arm64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:e0092c9adc9bf671729ec2a4682f3c53f1f12a9fdf09edf5f5c4b65172e04742_amd64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:03b2d5ec8747fa2984b4659b0d61c5dd67dd729c6957918752b8033a3e6f40ec_arm64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:5d356babef136df86f11f77ec595d9e9cc9a7f246eeb458e062757e273a9e803_amd64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:5479230ed1ace22b8f00141796326cae84a772b1b6f14f52a58366a9695266da_amd64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:b2a02cd673f7dd96218aa92a11bb924eb4538060f77fb8e773d0f13f5bdec55f_arm64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:71ff61b5a765e62ef16bd633580dc9d49e8fcb46a68c3ee0e831d161b598956a_arm64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:fb4b8f8338d6f3b7458ec9643d49175333a69d15650f026a1038836668f0c076_amd64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:b3c9c59b462a94d181b51ee7419c5e89618da06bb70d7905f7efeeca12e57c6b_amd64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:c4a8388737cd5330176421462353b4253dcbf4c7dc963b644b5d122cda3022d1_arm64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:548ef61d03e7b861bed4b2f86cb826add8fcf13251d34562a4ac78302eae9d88_amd64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:6daca9dff828394e3181355526276fdc6448eace218fc3c30b63b992bee5424d_arm64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:914d1985a1944cf4c25530b67aad321e7a8d6f28cfb7793b703b69456deecf8a_arm64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:965a1522fc45c8aeff07508ba9291919bd007318da0511ee2ed4e4c18190ec71_amd64		—

Threats

Impact Important

CVE-2026-33810

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L

CWE-1289 - Improper Validation of Unsafe Equivalence in Input

Affected products

Fixed 2 products

Product	Identifier	Version	Remediation
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95938fed3fcf7e786bcc418e5cc05999519336dd9b1ae26ac09b87d122244ce9_amd64		—	Vendor Fix fix
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95c41160b310ef0c54ddab4fd77dfaf02faf62de58d15b3a90b375c76226181c_arm64		—	Vendor Fix fix

Known not affected 18 products

Product	Identifier	Version	Remediation
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f0b40e2312ae2659f9d0092a98488d7c5965ab33efe759ce78778b1b8173c5d6_arm64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f2aeac65f02f6d21b497972087a808104100b547d92ab1a5656d91b48262c97d_amd64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:231d5f0956e242c675b2f33df01d7a1fd9f44c9ee80f2b05731a60e0022e1483_arm64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:8c6ca482631927526d6e8d1ca455cffc379d798c7d8d323c699e7ffc5ff44c88_amd64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:2e68b360df2e9532458e97127a16e10765c3e7bbe4842d6ad48febca834af1f2_arm64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:e0092c9adc9bf671729ec2a4682f3c53f1f12a9fdf09edf5f5c4b65172e04742_amd64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:03b2d5ec8747fa2984b4659b0d61c5dd67dd729c6957918752b8033a3e6f40ec_arm64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:5d356babef136df86f11f77ec595d9e9cc9a7f246eeb458e062757e273a9e803_amd64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:5479230ed1ace22b8f00141796326cae84a772b1b6f14f52a58366a9695266da_amd64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:b2a02cd673f7dd96218aa92a11bb924eb4538060f77fb8e773d0f13f5bdec55f_arm64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:71ff61b5a765e62ef16bd633580dc9d49e8fcb46a68c3ee0e831d161b598956a_arm64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:fb4b8f8338d6f3b7458ec9643d49175333a69d15650f026a1038836668f0c076_amd64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:b3c9c59b462a94d181b51ee7419c5e89618da06bb70d7905f7efeeca12e57c6b_amd64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:c4a8388737cd5330176421462353b4253dcbf4c7dc963b644b5d122cda3022d1_arm64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:548ef61d03e7b861bed4b2f86cb826add8fcf13251d34562a4ac78302eae9d88_amd64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:6daca9dff828394e3181355526276fdc6448eace218fc3c30b63b992bee5424d_arm64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:914d1985a1944cf4c25530b67aad321e7a8d6f28cfb7793b703b69456deecf8a_arm64		—
Unresolved product id: 9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:965a1522fc45c8aeff07508ba9291919bd007318da0511ee2ed4e4c18190ec71_amd64		—

Threats

Impact Important

References

36 references

URL	Category
https://access.redhat.com/errata/RHSA-2026:14391	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456335	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456336	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456338	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456339	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2026-32280	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456339	external
https://www.cve.org/CVERecord?id=CVE-2026-32280	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32280	external
https://go.dev/cl/758320	external
https://go.dev/issue/78282	external
https://groups.google.com/g/golang-announce/c/0uY…	external
https://pkg.go.dev/vuln/GO-2026-4947	external
https://access.redhat.com/security/cve/CVE-2026-32282	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456336	external
https://www.cve.org/CVERecord?id=CVE-2026-32282	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32282	external
https://go.dev/cl/763761	external
https://go.dev/issue/78293	external
https://pkg.go.dev/vuln/GO-2026-4864	external
https://access.redhat.com/security/cve/CVE-2026-32283	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456338	external
https://www.cve.org/CVERecord?id=CVE-2026-32283	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32283	external
https://go.dev/cl/763767	external
https://go.dev/issue/78334	external
https://pkg.go.dev/vuln/GO-2026-4870	external
https://access.redhat.com/security/cve/CVE-2026-33810	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456335	external
https://www.cve.org/CVERecord?id=CVE-2026-33810	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33810	external
https://go.dev/cl/763763	external
https://go.dev/issue/78332	external
https://pkg.go.dev/vuln/GO-2026-4866	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update is now available for the Red Hat build of Cryostat 4 on RHEL 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "An update is now available for the Red Hat build of Cryostat 4 on RHEL 9.\n\nSecurity Fix(es):\n\n* crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages (CVE-2026-32283)\n* crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application (CVE-2026-33810)\n* golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root (CVE-2026-32282)\n* crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2026:14391",
        "url": "https://access.redhat.com/errata/RHSA-2026:14391"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2456335",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456335"
      },
      {
        "category": "external",
        "summary": "2456336",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
      },
      {
        "category": "external",
        "summary": "2456338",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
      },
      {
        "category": "external",
        "summary": "2456339",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_14391.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat build of Cryostat security update",
    "tracking": {
      "current_release_date": "2026-06-08T06:01:53+00:00",
      "generator": {
        "date": "2026-06-08T06:01:53+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.8.2"
        }
      },
      "id": "RHSA-2026:14391",
      "initial_release_date": "2026-05-06T21:10:06+00:00",
      "revision_history": [
        {
          "date": "2026-05-06T21:10:06+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2026-05-06T21:10:06+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-06-08T06:01:53+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Cryostat 4 on RHEL 9",
                "product": {
                  "name": "Cryostat 4 on RHEL 9",
                  "product_id": "9Base-Cryostat-4",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:cryostat:4::el9"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Cryostat"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "cryostat/cryostat-agent-init-rhel9@sha256:f0b40e2312ae2659f9d0092a98488d7c5965ab33efe759ce78778b1b8173c5d6_arm64",
                "product": {
                  "name": "cryostat/cryostat-agent-init-rhel9@sha256:f0b40e2312ae2659f9d0092a98488d7c5965ab33efe759ce78778b1b8173c5d6_arm64",
                  "product_id": "cryostat/cryostat-agent-init-rhel9@sha256:f0b40e2312ae2659f9d0092a98488d7c5965ab33efe759ce78778b1b8173c5d6_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/cryostat-agent-init-rhel9@sha256:f0b40e2312ae2659f9d0092a98488d7c5965ab33efe759ce78778b1b8173c5d6?arch=arm64\u0026repository_url=registry.redhat.io/cryostat/cryostat-agent-init-rhel9\u0026tag=0.6.1-4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cryostat/cryostat-db-rhel9@sha256:231d5f0956e242c675b2f33df01d7a1fd9f44c9ee80f2b05731a60e0022e1483_arm64",
                "product": {
                  "name": "cryostat/cryostat-db-rhel9@sha256:231d5f0956e242c675b2f33df01d7a1fd9f44c9ee80f2b05731a60e0022e1483_arm64",
                  "product_id": "cryostat/cryostat-db-rhel9@sha256:231d5f0956e242c675b2f33df01d7a1fd9f44c9ee80f2b05731a60e0022e1483_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/cryostat-db-rhel9@sha256:231d5f0956e242c675b2f33df01d7a1fd9f44c9ee80f2b05731a60e0022e1483?arch=arm64\u0026repository_url=registry.redhat.io/cryostat/cryostat-db-rhel9\u0026tag=4.1.1-7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cryostat/cryostat-grafana-dashboard-rhel9@sha256:2e68b360df2e9532458e97127a16e10765c3e7bbe4842d6ad48febca834af1f2_arm64",
                "product": {
                  "name": "cryostat/cryostat-grafana-dashboard-rhel9@sha256:2e68b360df2e9532458e97127a16e10765c3e7bbe4842d6ad48febca834af1f2_arm64",
                  "product_id": "cryostat/cryostat-grafana-dashboard-rhel9@sha256:2e68b360df2e9532458e97127a16e10765c3e7bbe4842d6ad48febca834af1f2_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/cryostat-grafana-dashboard-rhel9@sha256:2e68b360df2e9532458e97127a16e10765c3e7bbe4842d6ad48febca834af1f2?arch=arm64\u0026repository_url=registry.redhat.io/cryostat/cryostat-grafana-dashboard-rhel9\u0026tag=4.1.1-5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cryostat/cryostat-openshift-console-plugin-rhel9@sha256:03b2d5ec8747fa2984b4659b0d61c5dd67dd729c6957918752b8033a3e6f40ec_arm64",
                "product": {
                  "name": "cryostat/cryostat-openshift-console-plugin-rhel9@sha256:03b2d5ec8747fa2984b4659b0d61c5dd67dd729c6957918752b8033a3e6f40ec_arm64",
                  "product_id": "cryostat/cryostat-openshift-console-plugin-rhel9@sha256:03b2d5ec8747fa2984b4659b0d61c5dd67dd729c6957918752b8033a3e6f40ec_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/cryostat-openshift-console-plugin-rhel9@sha256:03b2d5ec8747fa2984b4659b0d61c5dd67dd729c6957918752b8033a3e6f40ec?arch=arm64\u0026repository_url=registry.redhat.io/cryostat/cryostat-openshift-console-plugin-rhel9\u0026tag=4.1.1-4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cryostat/cryostat-reports-rhel9@sha256:71ff61b5a765e62ef16bd633580dc9d49e8fcb46a68c3ee0e831d161b598956a_arm64",
                "product": {
                  "name": "cryostat/cryostat-reports-rhel9@sha256:71ff61b5a765e62ef16bd633580dc9d49e8fcb46a68c3ee0e831d161b598956a_arm64",
                  "product_id": "cryostat/cryostat-reports-rhel9@sha256:71ff61b5a765e62ef16bd633580dc9d49e8fcb46a68c3ee0e831d161b598956a_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/cryostat-reports-rhel9@sha256:71ff61b5a765e62ef16bd633580dc9d49e8fcb46a68c3ee0e831d161b598956a?arch=arm64\u0026repository_url=registry.redhat.io/cryostat/cryostat-reports-rhel9\u0026tag=4.1.1-4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cryostat/cryostat-rhel9@sha256:6daca9dff828394e3181355526276fdc6448eace218fc3c30b63b992bee5424d_arm64",
                "product": {
                  "name": "cryostat/cryostat-rhel9@sha256:6daca9dff828394e3181355526276fdc6448eace218fc3c30b63b992bee5424d_arm64",
                  "product_id": "cryostat/cryostat-rhel9@sha256:6daca9dff828394e3181355526276fdc6448eace218fc3c30b63b992bee5424d_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/cryostat-rhel9@sha256:6daca9dff828394e3181355526276fdc6448eace218fc3c30b63b992bee5424d?arch=arm64\u0026repository_url=registry.redhat.io/cryostat/cryostat-rhel9\u0026tag=4.1.1-4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cryostat/cryostat-operator-bundle@sha256:b2a02cd673f7dd96218aa92a11bb924eb4538060f77fb8e773d0f13f5bdec55f_arm64",
                "product": {
                  "name": "cryostat/cryostat-operator-bundle@sha256:b2a02cd673f7dd96218aa92a11bb924eb4538060f77fb8e773d0f13f5bdec55f_arm64",
                  "product_id": "cryostat/cryostat-operator-bundle@sha256:b2a02cd673f7dd96218aa92a11bb924eb4538060f77fb8e773d0f13f5bdec55f_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/cryostat-operator-bundle@sha256:b2a02cd673f7dd96218aa92a11bb924eb4538060f77fb8e773d0f13f5bdec55f?arch=arm64\u0026repository_url=registry.redhat.io/cryostat/cryostat-operator-bundle\u0026tag=4.1.1-4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cryostat/cryostat-rhel9-operator@sha256:c4a8388737cd5330176421462353b4253dcbf4c7dc963b644b5d122cda3022d1_arm64",
                "product": {
                  "name": "cryostat/cryostat-rhel9-operator@sha256:c4a8388737cd5330176421462353b4253dcbf4c7dc963b644b5d122cda3022d1_arm64",
                  "product_id": "cryostat/cryostat-rhel9-operator@sha256:c4a8388737cd5330176421462353b4253dcbf4c7dc963b644b5d122cda3022d1_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/cryostat-rhel9-operator@sha256:c4a8388737cd5330176421462353b4253dcbf4c7dc963b644b5d122cda3022d1?arch=arm64\u0026repository_url=registry.redhat.io/cryostat/cryostat-rhel9-operator\u0026tag=4.1.1-7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cryostat/cryostat-storage-rhel9@sha256:95c41160b310ef0c54ddab4fd77dfaf02faf62de58d15b3a90b375c76226181c_arm64",
                "product": {
                  "name": "cryostat/cryostat-storage-rhel9@sha256:95c41160b310ef0c54ddab4fd77dfaf02faf62de58d15b3a90b375c76226181c_arm64",
                  "product_id": "cryostat/cryostat-storage-rhel9@sha256:95c41160b310ef0c54ddab4fd77dfaf02faf62de58d15b3a90b375c76226181c_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/cryostat-storage-rhel9@sha256:95c41160b310ef0c54ddab4fd77dfaf02faf62de58d15b3a90b375c76226181c?arch=arm64\u0026repository_url=registry.redhat.io/cryostat/cryostat-storage-rhel9\u0026tag=4.1.1-7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cryostat/jfr-datasource-rhel9@sha256:914d1985a1944cf4c25530b67aad321e7a8d6f28cfb7793b703b69456deecf8a_arm64",
                "product": {
                  "name": "cryostat/jfr-datasource-rhel9@sha256:914d1985a1944cf4c25530b67aad321e7a8d6f28cfb7793b703b69456deecf8a_arm64",
                  "product_id": "cryostat/jfr-datasource-rhel9@sha256:914d1985a1944cf4c25530b67aad321e7a8d6f28cfb7793b703b69456deecf8a_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/jfr-datasource-rhel9@sha256:914d1985a1944cf4c25530b67aad321e7a8d6f28cfb7793b703b69456deecf8a?arch=arm64\u0026repository_url=registry.redhat.io/cryostat/jfr-datasource-rhel9\u0026tag=4.1.1-4"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "arm64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "cryostat/cryostat-agent-init-rhel9@sha256:f2aeac65f02f6d21b497972087a808104100b547d92ab1a5656d91b48262c97d_amd64",
                "product": {
                  "name": "cryostat/cryostat-agent-init-rhel9@sha256:f2aeac65f02f6d21b497972087a808104100b547d92ab1a5656d91b48262c97d_amd64",
                  "product_id": "cryostat/cryostat-agent-init-rhel9@sha256:f2aeac65f02f6d21b497972087a808104100b547d92ab1a5656d91b48262c97d_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/cryostat-agent-init-rhel9@sha256:f2aeac65f02f6d21b497972087a808104100b547d92ab1a5656d91b48262c97d?arch=amd64\u0026repository_url=registry.redhat.io/cryostat/cryostat-agent-init-rhel9\u0026tag=0.6.1-4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cryostat/cryostat-db-rhel9@sha256:8c6ca482631927526d6e8d1ca455cffc379d798c7d8d323c699e7ffc5ff44c88_amd64",
                "product": {
                  "name": "cryostat/cryostat-db-rhel9@sha256:8c6ca482631927526d6e8d1ca455cffc379d798c7d8d323c699e7ffc5ff44c88_amd64",
                  "product_id": "cryostat/cryostat-db-rhel9@sha256:8c6ca482631927526d6e8d1ca455cffc379d798c7d8d323c699e7ffc5ff44c88_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/cryostat-db-rhel9@sha256:8c6ca482631927526d6e8d1ca455cffc379d798c7d8d323c699e7ffc5ff44c88?arch=amd64\u0026repository_url=registry.redhat.io/cryostat/cryostat-db-rhel9\u0026tag=4.1.1-7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cryostat/cryostat-grafana-dashboard-rhel9@sha256:e0092c9adc9bf671729ec2a4682f3c53f1f12a9fdf09edf5f5c4b65172e04742_amd64",
                "product": {
                  "name": "cryostat/cryostat-grafana-dashboard-rhel9@sha256:e0092c9adc9bf671729ec2a4682f3c53f1f12a9fdf09edf5f5c4b65172e04742_amd64",
                  "product_id": "cryostat/cryostat-grafana-dashboard-rhel9@sha256:e0092c9adc9bf671729ec2a4682f3c53f1f12a9fdf09edf5f5c4b65172e04742_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/cryostat-grafana-dashboard-rhel9@sha256:e0092c9adc9bf671729ec2a4682f3c53f1f12a9fdf09edf5f5c4b65172e04742?arch=amd64\u0026repository_url=registry.redhat.io/cryostat/cryostat-grafana-dashboard-rhel9\u0026tag=4.1.1-5"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cryostat/cryostat-openshift-console-plugin-rhel9@sha256:5d356babef136df86f11f77ec595d9e9cc9a7f246eeb458e062757e273a9e803_amd64",
                "product": {
                  "name": "cryostat/cryostat-openshift-console-plugin-rhel9@sha256:5d356babef136df86f11f77ec595d9e9cc9a7f246eeb458e062757e273a9e803_amd64",
                  "product_id": "cryostat/cryostat-openshift-console-plugin-rhel9@sha256:5d356babef136df86f11f77ec595d9e9cc9a7f246eeb458e062757e273a9e803_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/cryostat-openshift-console-plugin-rhel9@sha256:5d356babef136df86f11f77ec595d9e9cc9a7f246eeb458e062757e273a9e803?arch=amd64\u0026repository_url=registry.redhat.io/cryostat/cryostat-openshift-console-plugin-rhel9\u0026tag=4.1.1-4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cryostat/cryostat-reports-rhel9@sha256:fb4b8f8338d6f3b7458ec9643d49175333a69d15650f026a1038836668f0c076_amd64",
                "product": {
                  "name": "cryostat/cryostat-reports-rhel9@sha256:fb4b8f8338d6f3b7458ec9643d49175333a69d15650f026a1038836668f0c076_amd64",
                  "product_id": "cryostat/cryostat-reports-rhel9@sha256:fb4b8f8338d6f3b7458ec9643d49175333a69d15650f026a1038836668f0c076_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/cryostat-reports-rhel9@sha256:fb4b8f8338d6f3b7458ec9643d49175333a69d15650f026a1038836668f0c076?arch=amd64\u0026repository_url=registry.redhat.io/cryostat/cryostat-reports-rhel9\u0026tag=4.1.1-4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cryostat/cryostat-rhel9@sha256:548ef61d03e7b861bed4b2f86cb826add8fcf13251d34562a4ac78302eae9d88_amd64",
                "product": {
                  "name": "cryostat/cryostat-rhel9@sha256:548ef61d03e7b861bed4b2f86cb826add8fcf13251d34562a4ac78302eae9d88_amd64",
                  "product_id": "cryostat/cryostat-rhel9@sha256:548ef61d03e7b861bed4b2f86cb826add8fcf13251d34562a4ac78302eae9d88_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/cryostat-rhel9@sha256:548ef61d03e7b861bed4b2f86cb826add8fcf13251d34562a4ac78302eae9d88?arch=amd64\u0026repository_url=registry.redhat.io/cryostat/cryostat-rhel9\u0026tag=4.1.1-4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cryostat/cryostat-operator-bundle@sha256:5479230ed1ace22b8f00141796326cae84a772b1b6f14f52a58366a9695266da_amd64",
                "product": {
                  "name": "cryostat/cryostat-operator-bundle@sha256:5479230ed1ace22b8f00141796326cae84a772b1b6f14f52a58366a9695266da_amd64",
                  "product_id": "cryostat/cryostat-operator-bundle@sha256:5479230ed1ace22b8f00141796326cae84a772b1b6f14f52a58366a9695266da_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/cryostat-operator-bundle@sha256:5479230ed1ace22b8f00141796326cae84a772b1b6f14f52a58366a9695266da?arch=amd64\u0026repository_url=registry.redhat.io/cryostat/cryostat-operator-bundle\u0026tag=4.1.1-4"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cryostat/cryostat-rhel9-operator@sha256:b3c9c59b462a94d181b51ee7419c5e89618da06bb70d7905f7efeeca12e57c6b_amd64",
                "product": {
                  "name": "cryostat/cryostat-rhel9-operator@sha256:b3c9c59b462a94d181b51ee7419c5e89618da06bb70d7905f7efeeca12e57c6b_amd64",
                  "product_id": "cryostat/cryostat-rhel9-operator@sha256:b3c9c59b462a94d181b51ee7419c5e89618da06bb70d7905f7efeeca12e57c6b_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/cryostat-rhel9-operator@sha256:b3c9c59b462a94d181b51ee7419c5e89618da06bb70d7905f7efeeca12e57c6b?arch=amd64\u0026repository_url=registry.redhat.io/cryostat/cryostat-rhel9-operator\u0026tag=4.1.1-7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cryostat/cryostat-storage-rhel9@sha256:95938fed3fcf7e786bcc418e5cc05999519336dd9b1ae26ac09b87d122244ce9_amd64",
                "product": {
                  "name": "cryostat/cryostat-storage-rhel9@sha256:95938fed3fcf7e786bcc418e5cc05999519336dd9b1ae26ac09b87d122244ce9_amd64",
                  "product_id": "cryostat/cryostat-storage-rhel9@sha256:95938fed3fcf7e786bcc418e5cc05999519336dd9b1ae26ac09b87d122244ce9_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/cryostat-storage-rhel9@sha256:95938fed3fcf7e786bcc418e5cc05999519336dd9b1ae26ac09b87d122244ce9?arch=amd64\u0026repository_url=registry.redhat.io/cryostat/cryostat-storage-rhel9\u0026tag=4.1.1-7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cryostat/jfr-datasource-rhel9@sha256:965a1522fc45c8aeff07508ba9291919bd007318da0511ee2ed4e4c18190ec71_amd64",
                "product": {
                  "name": "cryostat/jfr-datasource-rhel9@sha256:965a1522fc45c8aeff07508ba9291919bd007318da0511ee2ed4e4c18190ec71_amd64",
                  "product_id": "cryostat/jfr-datasource-rhel9@sha256:965a1522fc45c8aeff07508ba9291919bd007318da0511ee2ed4e4c18190ec71_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/jfr-datasource-rhel9@sha256:965a1522fc45c8aeff07508ba9291919bd007318da0511ee2ed4e4c18190ec71?arch=amd64\u0026repository_url=registry.redhat.io/cryostat/jfr-datasource-rhel9\u0026tag=4.1.1-4"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "amd64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cryostat/cryostat-agent-init-rhel9@sha256:f0b40e2312ae2659f9d0092a98488d7c5965ab33efe759ce78778b1b8173c5d6_arm64 as a component of Cryostat 4 on RHEL 9",
          "product_id": "9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f0b40e2312ae2659f9d0092a98488d7c5965ab33efe759ce78778b1b8173c5d6_arm64"
        },
        "product_reference": "cryostat/cryostat-agent-init-rhel9@sha256:f0b40e2312ae2659f9d0092a98488d7c5965ab33efe759ce78778b1b8173c5d6_arm64",
        "relates_to_product_reference": "9Base-Cryostat-4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cryostat/cryostat-agent-init-rhel9@sha256:f2aeac65f02f6d21b497972087a808104100b547d92ab1a5656d91b48262c97d_amd64 as a component of Cryostat 4 on RHEL 9",
          "product_id": "9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f2aeac65f02f6d21b497972087a808104100b547d92ab1a5656d91b48262c97d_amd64"
        },
        "product_reference": "cryostat/cryostat-agent-init-rhel9@sha256:f2aeac65f02f6d21b497972087a808104100b547d92ab1a5656d91b48262c97d_amd64",
        "relates_to_product_reference": "9Base-Cryostat-4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cryostat/cryostat-db-rhel9@sha256:231d5f0956e242c675b2f33df01d7a1fd9f44c9ee80f2b05731a60e0022e1483_arm64 as a component of Cryostat 4 on RHEL 9",
          "product_id": "9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:231d5f0956e242c675b2f33df01d7a1fd9f44c9ee80f2b05731a60e0022e1483_arm64"
        },
        "product_reference": "cryostat/cryostat-db-rhel9@sha256:231d5f0956e242c675b2f33df01d7a1fd9f44c9ee80f2b05731a60e0022e1483_arm64",
        "relates_to_product_reference": "9Base-Cryostat-4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cryostat/cryostat-db-rhel9@sha256:8c6ca482631927526d6e8d1ca455cffc379d798c7d8d323c699e7ffc5ff44c88_amd64 as a component of Cryostat 4 on RHEL 9",
          "product_id": "9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:8c6ca482631927526d6e8d1ca455cffc379d798c7d8d323c699e7ffc5ff44c88_amd64"
        },
        "product_reference": "cryostat/cryostat-db-rhel9@sha256:8c6ca482631927526d6e8d1ca455cffc379d798c7d8d323c699e7ffc5ff44c88_amd64",
        "relates_to_product_reference": "9Base-Cryostat-4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cryostat/cryostat-grafana-dashboard-rhel9@sha256:2e68b360df2e9532458e97127a16e10765c3e7bbe4842d6ad48febca834af1f2_arm64 as a component of Cryostat 4 on RHEL 9",
          "product_id": "9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:2e68b360df2e9532458e97127a16e10765c3e7bbe4842d6ad48febca834af1f2_arm64"
        },
        "product_reference": "cryostat/cryostat-grafana-dashboard-rhel9@sha256:2e68b360df2e9532458e97127a16e10765c3e7bbe4842d6ad48febca834af1f2_arm64",
        "relates_to_product_reference": "9Base-Cryostat-4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cryostat/cryostat-grafana-dashboard-rhel9@sha256:e0092c9adc9bf671729ec2a4682f3c53f1f12a9fdf09edf5f5c4b65172e04742_amd64 as a component of Cryostat 4 on RHEL 9",
          "product_id": "9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:e0092c9adc9bf671729ec2a4682f3c53f1f12a9fdf09edf5f5c4b65172e04742_amd64"
        },
        "product_reference": "cryostat/cryostat-grafana-dashboard-rhel9@sha256:e0092c9adc9bf671729ec2a4682f3c53f1f12a9fdf09edf5f5c4b65172e04742_amd64",
        "relates_to_product_reference": "9Base-Cryostat-4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cryostat/cryostat-openshift-console-plugin-rhel9@sha256:03b2d5ec8747fa2984b4659b0d61c5dd67dd729c6957918752b8033a3e6f40ec_arm64 as a component of Cryostat 4 on RHEL 9",
          "product_id": "9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:03b2d5ec8747fa2984b4659b0d61c5dd67dd729c6957918752b8033a3e6f40ec_arm64"
        },
        "product_reference": "cryostat/cryostat-openshift-console-plugin-rhel9@sha256:03b2d5ec8747fa2984b4659b0d61c5dd67dd729c6957918752b8033a3e6f40ec_arm64",
        "relates_to_product_reference": "9Base-Cryostat-4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cryostat/cryostat-openshift-console-plugin-rhel9@sha256:5d356babef136df86f11f77ec595d9e9cc9a7f246eeb458e062757e273a9e803_amd64 as a component of Cryostat 4 on RHEL 9",
          "product_id": "9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:5d356babef136df86f11f77ec595d9e9cc9a7f246eeb458e062757e273a9e803_amd64"
        },
        "product_reference": "cryostat/cryostat-openshift-console-plugin-rhel9@sha256:5d356babef136df86f11f77ec595d9e9cc9a7f246eeb458e062757e273a9e803_amd64",
        "relates_to_product_reference": "9Base-Cryostat-4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cryostat/cryostat-operator-bundle@sha256:5479230ed1ace22b8f00141796326cae84a772b1b6f14f52a58366a9695266da_amd64 as a component of Cryostat 4 on RHEL 9",
          "product_id": "9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:5479230ed1ace22b8f00141796326cae84a772b1b6f14f52a58366a9695266da_amd64"
        },
        "product_reference": "cryostat/cryostat-operator-bundle@sha256:5479230ed1ace22b8f00141796326cae84a772b1b6f14f52a58366a9695266da_amd64",
        "relates_to_product_reference": "9Base-Cryostat-4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cryostat/cryostat-operator-bundle@sha256:b2a02cd673f7dd96218aa92a11bb924eb4538060f77fb8e773d0f13f5bdec55f_arm64 as a component of Cryostat 4 on RHEL 9",
          "product_id": "9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:b2a02cd673f7dd96218aa92a11bb924eb4538060f77fb8e773d0f13f5bdec55f_arm64"
        },
        "product_reference": "cryostat/cryostat-operator-bundle@sha256:b2a02cd673f7dd96218aa92a11bb924eb4538060f77fb8e773d0f13f5bdec55f_arm64",
        "relates_to_product_reference": "9Base-Cryostat-4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cryostat/cryostat-reports-rhel9@sha256:71ff61b5a765e62ef16bd633580dc9d49e8fcb46a68c3ee0e831d161b598956a_arm64 as a component of Cryostat 4 on RHEL 9",
          "product_id": "9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:71ff61b5a765e62ef16bd633580dc9d49e8fcb46a68c3ee0e831d161b598956a_arm64"
        },
        "product_reference": "cryostat/cryostat-reports-rhel9@sha256:71ff61b5a765e62ef16bd633580dc9d49e8fcb46a68c3ee0e831d161b598956a_arm64",
        "relates_to_product_reference": "9Base-Cryostat-4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cryostat/cryostat-reports-rhel9@sha256:fb4b8f8338d6f3b7458ec9643d49175333a69d15650f026a1038836668f0c076_amd64 as a component of Cryostat 4 on RHEL 9",
          "product_id": "9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:fb4b8f8338d6f3b7458ec9643d49175333a69d15650f026a1038836668f0c076_amd64"
        },
        "product_reference": "cryostat/cryostat-reports-rhel9@sha256:fb4b8f8338d6f3b7458ec9643d49175333a69d15650f026a1038836668f0c076_amd64",
        "relates_to_product_reference": "9Base-Cryostat-4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cryostat/cryostat-rhel9-operator@sha256:b3c9c59b462a94d181b51ee7419c5e89618da06bb70d7905f7efeeca12e57c6b_amd64 as a component of Cryostat 4 on RHEL 9",
          "product_id": "9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:b3c9c59b462a94d181b51ee7419c5e89618da06bb70d7905f7efeeca12e57c6b_amd64"
        },
        "product_reference": "cryostat/cryostat-rhel9-operator@sha256:b3c9c59b462a94d181b51ee7419c5e89618da06bb70d7905f7efeeca12e57c6b_amd64",
        "relates_to_product_reference": "9Base-Cryostat-4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cryostat/cryostat-rhel9-operator@sha256:c4a8388737cd5330176421462353b4253dcbf4c7dc963b644b5d122cda3022d1_arm64 as a component of Cryostat 4 on RHEL 9",
          "product_id": "9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:c4a8388737cd5330176421462353b4253dcbf4c7dc963b644b5d122cda3022d1_arm64"
        },
        "product_reference": "cryostat/cryostat-rhel9-operator@sha256:c4a8388737cd5330176421462353b4253dcbf4c7dc963b644b5d122cda3022d1_arm64",
        "relates_to_product_reference": "9Base-Cryostat-4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cryostat/cryostat-rhel9@sha256:548ef61d03e7b861bed4b2f86cb826add8fcf13251d34562a4ac78302eae9d88_amd64 as a component of Cryostat 4 on RHEL 9",
          "product_id": "9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:548ef61d03e7b861bed4b2f86cb826add8fcf13251d34562a4ac78302eae9d88_amd64"
        },
        "product_reference": "cryostat/cryostat-rhel9@sha256:548ef61d03e7b861bed4b2f86cb826add8fcf13251d34562a4ac78302eae9d88_amd64",
        "relates_to_product_reference": "9Base-Cryostat-4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cryostat/cryostat-rhel9@sha256:6daca9dff828394e3181355526276fdc6448eace218fc3c30b63b992bee5424d_arm64 as a component of Cryostat 4 on RHEL 9",
          "product_id": "9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:6daca9dff828394e3181355526276fdc6448eace218fc3c30b63b992bee5424d_arm64"
        },
        "product_reference": "cryostat/cryostat-rhel9@sha256:6daca9dff828394e3181355526276fdc6448eace218fc3c30b63b992bee5424d_arm64",
        "relates_to_product_reference": "9Base-Cryostat-4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cryostat/cryostat-storage-rhel9@sha256:95938fed3fcf7e786bcc418e5cc05999519336dd9b1ae26ac09b87d122244ce9_amd64 as a component of Cryostat 4 on RHEL 9",
          "product_id": "9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95938fed3fcf7e786bcc418e5cc05999519336dd9b1ae26ac09b87d122244ce9_amd64"
        },
        "product_reference": "cryostat/cryostat-storage-rhel9@sha256:95938fed3fcf7e786bcc418e5cc05999519336dd9b1ae26ac09b87d122244ce9_amd64",
        "relates_to_product_reference": "9Base-Cryostat-4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cryostat/cryostat-storage-rhel9@sha256:95c41160b310ef0c54ddab4fd77dfaf02faf62de58d15b3a90b375c76226181c_arm64 as a component of Cryostat 4 on RHEL 9",
          "product_id": "9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95c41160b310ef0c54ddab4fd77dfaf02faf62de58d15b3a90b375c76226181c_arm64"
        },
        "product_reference": "cryostat/cryostat-storage-rhel9@sha256:95c41160b310ef0c54ddab4fd77dfaf02faf62de58d15b3a90b375c76226181c_arm64",
        "relates_to_product_reference": "9Base-Cryostat-4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cryostat/jfr-datasource-rhel9@sha256:914d1985a1944cf4c25530b67aad321e7a8d6f28cfb7793b703b69456deecf8a_arm64 as a component of Cryostat 4 on RHEL 9",
          "product_id": "9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:914d1985a1944cf4c25530b67aad321e7a8d6f28cfb7793b703b69456deecf8a_arm64"
        },
        "product_reference": "cryostat/jfr-datasource-rhel9@sha256:914d1985a1944cf4c25530b67aad321e7a8d6f28cfb7793b703b69456deecf8a_arm64",
        "relates_to_product_reference": "9Base-Cryostat-4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cryostat/jfr-datasource-rhel9@sha256:965a1522fc45c8aeff07508ba9291919bd007318da0511ee2ed4e4c18190ec71_amd64 as a component of Cryostat 4 on RHEL 9",
          "product_id": "9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:965a1522fc45c8aeff07508ba9291919bd007318da0511ee2ed4e4c18190ec71_amd64"
        },
        "product_reference": "cryostat/jfr-datasource-rhel9@sha256:965a1522fc45c8aeff07508ba9291919bd007318da0511ee2ed4e4c18190ec71_amd64",
        "relates_to_product_reference": "9Base-Cryostat-4"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2026-32280",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2026-04-08T02:01:19.572351+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f0b40e2312ae2659f9d0092a98488d7c5965ab33efe759ce78778b1b8173c5d6_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f2aeac65f02f6d21b497972087a808104100b547d92ab1a5656d91b48262c97d_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:231d5f0956e242c675b2f33df01d7a1fd9f44c9ee80f2b05731a60e0022e1483_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:8c6ca482631927526d6e8d1ca455cffc379d798c7d8d323c699e7ffc5ff44c88_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:2e68b360df2e9532458e97127a16e10765c3e7bbe4842d6ad48febca834af1f2_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:e0092c9adc9bf671729ec2a4682f3c53f1f12a9fdf09edf5f5c4b65172e04742_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:03b2d5ec8747fa2984b4659b0d61c5dd67dd729c6957918752b8033a3e6f40ec_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:5d356babef136df86f11f77ec595d9e9cc9a7f246eeb458e062757e273a9e803_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:5479230ed1ace22b8f00141796326cae84a772b1b6f14f52a58366a9695266da_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:b2a02cd673f7dd96218aa92a11bb924eb4538060f77fb8e773d0f13f5bdec55f_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:71ff61b5a765e62ef16bd633580dc9d49e8fcb46a68c3ee0e831d161b598956a_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:fb4b8f8338d6f3b7458ec9643d49175333a69d15650f026a1038836668f0c076_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:b3c9c59b462a94d181b51ee7419c5e89618da06bb70d7905f7efeeca12e57c6b_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:c4a8388737cd5330176421462353b4253dcbf4c7dc963b644b5d122cda3022d1_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:548ef61d03e7b861bed4b2f86cb826add8fcf13251d34562a4ac78302eae9d88_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:6daca9dff828394e3181355526276fdc6448eace218fc3c30b63b992bee5424d_arm64",
            "9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:914d1985a1944cf4c25530b67aad321e7a8d6f28cfb7793b703b69456deecf8a_arm64",
            "9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:965a1522fc45c8aeff07508ba9291919bd007318da0511ee2ed4e4c18190ec71_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456339"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95938fed3fcf7e786bcc418e5cc05999519336dd9b1ae26ac09b87d122244ce9_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95c41160b310ef0c54ddab4fd77dfaf02faf62de58d15b3a90b375c76226181c_arm64"
        ],
        "known_not_affected": [
          "9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f0b40e2312ae2659f9d0092a98488d7c5965ab33efe759ce78778b1b8173c5d6_arm64",
          "9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f2aeac65f02f6d21b497972087a808104100b547d92ab1a5656d91b48262c97d_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:231d5f0956e242c675b2f33df01d7a1fd9f44c9ee80f2b05731a60e0022e1483_arm64",
          "9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:8c6ca482631927526d6e8d1ca455cffc379d798c7d8d323c699e7ffc5ff44c88_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:2e68b360df2e9532458e97127a16e10765c3e7bbe4842d6ad48febca834af1f2_arm64",
          "9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:e0092c9adc9bf671729ec2a4682f3c53f1f12a9fdf09edf5f5c4b65172e04742_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:03b2d5ec8747fa2984b4659b0d61c5dd67dd729c6957918752b8033a3e6f40ec_arm64",
          "9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:5d356babef136df86f11f77ec595d9e9cc9a7f246eeb458e062757e273a9e803_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:5479230ed1ace22b8f00141796326cae84a772b1b6f14f52a58366a9695266da_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:b2a02cd673f7dd96218aa92a11bb924eb4538060f77fb8e773d0f13f5bdec55f_arm64",
          "9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:71ff61b5a765e62ef16bd633580dc9d49e8fcb46a68c3ee0e831d161b598956a_arm64",
          "9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:fb4b8f8338d6f3b7458ec9643d49175333a69d15650f026a1038836668f0c076_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:b3c9c59b462a94d181b51ee7419c5e89618da06bb70d7905f7efeeca12e57c6b_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:c4a8388737cd5330176421462353b4253dcbf4c7dc963b644b5d122cda3022d1_arm64",
          "9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:548ef61d03e7b861bed4b2f86cb826add8fcf13251d34562a4ac78302eae9d88_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:6daca9dff828394e3181355526276fdc6448eace218fc3c30b63b992bee5424d_arm64",
          "9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:914d1985a1944cf4c25530b67aad321e7a8d6f28cfb7793b703b69456deecf8a_arm64",
          "9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:965a1522fc45c8aeff07508ba9291919bd007318da0511ee2ed4e4c18190ec71_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456339",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32280",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/758320",
          "url": "https://go.dev/cl/758320"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78282",
          "url": "https://go.dev/issue/78282"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4947",
          "url": "https://pkg.go.dev/vuln/GO-2026-4947"
        }
      ],
      "release_date": "2026-04-08T01:06:58.595000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-06T21:10:06+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95938fed3fcf7e786bcc418e5cc05999519336dd9b1ae26ac09b87d122244ce9_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95c41160b310ef0c54ddab4fd77dfaf02faf62de58d15b3a90b375c76226181c_arm64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:14391"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f0b40e2312ae2659f9d0092a98488d7c5965ab33efe759ce78778b1b8173c5d6_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f2aeac65f02f6d21b497972087a808104100b547d92ab1a5656d91b48262c97d_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:231d5f0956e242c675b2f33df01d7a1fd9f44c9ee80f2b05731a60e0022e1483_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:8c6ca482631927526d6e8d1ca455cffc379d798c7d8d323c699e7ffc5ff44c88_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:2e68b360df2e9532458e97127a16e10765c3e7bbe4842d6ad48febca834af1f2_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:e0092c9adc9bf671729ec2a4682f3c53f1f12a9fdf09edf5f5c4b65172e04742_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:03b2d5ec8747fa2984b4659b0d61c5dd67dd729c6957918752b8033a3e6f40ec_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:5d356babef136df86f11f77ec595d9e9cc9a7f246eeb458e062757e273a9e803_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:5479230ed1ace22b8f00141796326cae84a772b1b6f14f52a58366a9695266da_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:b2a02cd673f7dd96218aa92a11bb924eb4538060f77fb8e773d0f13f5bdec55f_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:71ff61b5a765e62ef16bd633580dc9d49e8fcb46a68c3ee0e831d161b598956a_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:fb4b8f8338d6f3b7458ec9643d49175333a69d15650f026a1038836668f0c076_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:b3c9c59b462a94d181b51ee7419c5e89618da06bb70d7905f7efeeca12e57c6b_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:c4a8388737cd5330176421462353b4253dcbf4c7dc963b644b5d122cda3022d1_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:548ef61d03e7b861bed4b2f86cb826add8fcf13251d34562a4ac78302eae9d88_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:6daca9dff828394e3181355526276fdc6448eace218fc3c30b63b992bee5424d_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95938fed3fcf7e786bcc418e5cc05999519336dd9b1ae26ac09b87d122244ce9_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95c41160b310ef0c54ddab4fd77dfaf02faf62de58d15b3a90b375c76226181c_arm64",
            "9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:914d1985a1944cf4c25530b67aad321e7a8d6f28cfb7793b703b69456deecf8a_arm64",
            "9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:965a1522fc45c8aeff07508ba9291919bd007318da0511ee2ed4e4c18190ec71_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building"
    },
    {
      "cve": "CVE-2026-32282",
      "cwe": {
        "id": "CWE-367",
        "name": "Time-of-check Time-of-use (TOCTOU) Race Condition"
      },
      "discovery_date": "2026-04-08T02:01:12.683211+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f0b40e2312ae2659f9d0092a98488d7c5965ab33efe759ce78778b1b8173c5d6_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f2aeac65f02f6d21b497972087a808104100b547d92ab1a5656d91b48262c97d_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:231d5f0956e242c675b2f33df01d7a1fd9f44c9ee80f2b05731a60e0022e1483_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:8c6ca482631927526d6e8d1ca455cffc379d798c7d8d323c699e7ffc5ff44c88_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:2e68b360df2e9532458e97127a16e10765c3e7bbe4842d6ad48febca834af1f2_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:e0092c9adc9bf671729ec2a4682f3c53f1f12a9fdf09edf5f5c4b65172e04742_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:03b2d5ec8747fa2984b4659b0d61c5dd67dd729c6957918752b8033a3e6f40ec_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:5d356babef136df86f11f77ec595d9e9cc9a7f246eeb458e062757e273a9e803_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:5479230ed1ace22b8f00141796326cae84a772b1b6f14f52a58366a9695266da_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:b2a02cd673f7dd96218aa92a11bb924eb4538060f77fb8e773d0f13f5bdec55f_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:71ff61b5a765e62ef16bd633580dc9d49e8fcb46a68c3ee0e831d161b598956a_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:fb4b8f8338d6f3b7458ec9643d49175333a69d15650f026a1038836668f0c076_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:b3c9c59b462a94d181b51ee7419c5e89618da06bb70d7905f7efeeca12e57c6b_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:c4a8388737cd5330176421462353b4253dcbf4c7dc963b644b5d122cda3022d1_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:548ef61d03e7b861bed4b2f86cb826add8fcf13251d34562a4ac78302eae9d88_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:6daca9dff828394e3181355526276fdc6448eace218fc3c30b63b992bee5424d_arm64",
            "9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:914d1985a1944cf4c25530b67aad321e7a8d6f28cfb7793b703b69456deecf8a_arm64",
            "9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:965a1522fc45c8aeff07508ba9291919bd007318da0511ee2ed4e4c18190ec71_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456336"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs access to the system and the required permissions to create a symbolic link. Additionally, the attacker must swap the target file with a symbolic link in the exact window after the `Root.Chmod` function checks its target but before acting. Due to these conditions, this flaw has been rated with a moderate severity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95938fed3fcf7e786bcc418e5cc05999519336dd9b1ae26ac09b87d122244ce9_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95c41160b310ef0c54ddab4fd77dfaf02faf62de58d15b3a90b375c76226181c_arm64"
        ],
        "known_not_affected": [
          "9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f0b40e2312ae2659f9d0092a98488d7c5965ab33efe759ce78778b1b8173c5d6_arm64",
          "9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f2aeac65f02f6d21b497972087a808104100b547d92ab1a5656d91b48262c97d_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:231d5f0956e242c675b2f33df01d7a1fd9f44c9ee80f2b05731a60e0022e1483_arm64",
          "9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:8c6ca482631927526d6e8d1ca455cffc379d798c7d8d323c699e7ffc5ff44c88_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:2e68b360df2e9532458e97127a16e10765c3e7bbe4842d6ad48febca834af1f2_arm64",
          "9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:e0092c9adc9bf671729ec2a4682f3c53f1f12a9fdf09edf5f5c4b65172e04742_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:03b2d5ec8747fa2984b4659b0d61c5dd67dd729c6957918752b8033a3e6f40ec_arm64",
          "9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:5d356babef136df86f11f77ec595d9e9cc9a7f246eeb458e062757e273a9e803_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:5479230ed1ace22b8f00141796326cae84a772b1b6f14f52a58366a9695266da_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:b2a02cd673f7dd96218aa92a11bb924eb4538060f77fb8e773d0f13f5bdec55f_arm64",
          "9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:71ff61b5a765e62ef16bd633580dc9d49e8fcb46a68c3ee0e831d161b598956a_arm64",
          "9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:fb4b8f8338d6f3b7458ec9643d49175333a69d15650f026a1038836668f0c076_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:b3c9c59b462a94d181b51ee7419c5e89618da06bb70d7905f7efeeca12e57c6b_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:c4a8388737cd5330176421462353b4253dcbf4c7dc963b644b5d122cda3022d1_arm64",
          "9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:548ef61d03e7b861bed4b2f86cb826add8fcf13251d34562a4ac78302eae9d88_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:6daca9dff828394e3181355526276fdc6448eace218fc3c30b63b992bee5424d_arm64",
          "9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:914d1985a1944cf4c25530b67aad321e7a8d6f28cfb7793b703b69456deecf8a_arm64",
          "9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:965a1522fc45c8aeff07508ba9291919bd007318da0511ee2ed4e4c18190ec71_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456336",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32282",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/763761",
          "url": "https://go.dev/cl/763761"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78293",
          "url": "https://go.dev/issue/78293"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4864",
          "url": "https://pkg.go.dev/vuln/GO-2026-4864"
        }
      ],
      "release_date": "2026-04-08T01:06:55.953000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-06T21:10:06+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95938fed3fcf7e786bcc418e5cc05999519336dd9b1ae26ac09b87d122244ce9_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95c41160b310ef0c54ddab4fd77dfaf02faf62de58d15b3a90b375c76226181c_arm64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:14391"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f0b40e2312ae2659f9d0092a98488d7c5965ab33efe759ce78778b1b8173c5d6_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f2aeac65f02f6d21b497972087a808104100b547d92ab1a5656d91b48262c97d_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:231d5f0956e242c675b2f33df01d7a1fd9f44c9ee80f2b05731a60e0022e1483_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:8c6ca482631927526d6e8d1ca455cffc379d798c7d8d323c699e7ffc5ff44c88_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:2e68b360df2e9532458e97127a16e10765c3e7bbe4842d6ad48febca834af1f2_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:e0092c9adc9bf671729ec2a4682f3c53f1f12a9fdf09edf5f5c4b65172e04742_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:03b2d5ec8747fa2984b4659b0d61c5dd67dd729c6957918752b8033a3e6f40ec_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:5d356babef136df86f11f77ec595d9e9cc9a7f246eeb458e062757e273a9e803_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:5479230ed1ace22b8f00141796326cae84a772b1b6f14f52a58366a9695266da_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:b2a02cd673f7dd96218aa92a11bb924eb4538060f77fb8e773d0f13f5bdec55f_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:71ff61b5a765e62ef16bd633580dc9d49e8fcb46a68c3ee0e831d161b598956a_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:fb4b8f8338d6f3b7458ec9643d49175333a69d15650f026a1038836668f0c076_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:b3c9c59b462a94d181b51ee7419c5e89618da06bb70d7905f7efeeca12e57c6b_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:c4a8388737cd5330176421462353b4253dcbf4c7dc963b644b5d122cda3022d1_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:548ef61d03e7b861bed4b2f86cb826add8fcf13251d34562a4ac78302eae9d88_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:6daca9dff828394e3181355526276fdc6448eace218fc3c30b63b992bee5424d_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95938fed3fcf7e786bcc418e5cc05999519336dd9b1ae26ac09b87d122244ce9_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95c41160b310ef0c54ddab4fd77dfaf02faf62de58d15b3a90b375c76226181c_arm64",
            "9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:914d1985a1944cf4c25530b67aad321e7a8d6f28cfb7793b703b69456deecf8a_arm64",
            "9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:965a1522fc45c8aeff07508ba9291919bd007318da0511ee2ed4e4c18190ec71_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f0b40e2312ae2659f9d0092a98488d7c5965ab33efe759ce78778b1b8173c5d6_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f2aeac65f02f6d21b497972087a808104100b547d92ab1a5656d91b48262c97d_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:231d5f0956e242c675b2f33df01d7a1fd9f44c9ee80f2b05731a60e0022e1483_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:8c6ca482631927526d6e8d1ca455cffc379d798c7d8d323c699e7ffc5ff44c88_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:2e68b360df2e9532458e97127a16e10765c3e7bbe4842d6ad48febca834af1f2_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:e0092c9adc9bf671729ec2a4682f3c53f1f12a9fdf09edf5f5c4b65172e04742_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:03b2d5ec8747fa2984b4659b0d61c5dd67dd729c6957918752b8033a3e6f40ec_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:5d356babef136df86f11f77ec595d9e9cc9a7f246eeb458e062757e273a9e803_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:5479230ed1ace22b8f00141796326cae84a772b1b6f14f52a58366a9695266da_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:b2a02cd673f7dd96218aa92a11bb924eb4538060f77fb8e773d0f13f5bdec55f_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:71ff61b5a765e62ef16bd633580dc9d49e8fcb46a68c3ee0e831d161b598956a_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:fb4b8f8338d6f3b7458ec9643d49175333a69d15650f026a1038836668f0c076_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:b3c9c59b462a94d181b51ee7419c5e89618da06bb70d7905f7efeeca12e57c6b_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:c4a8388737cd5330176421462353b4253dcbf4c7dc963b644b5d122cda3022d1_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:548ef61d03e7b861bed4b2f86cb826add8fcf13251d34562a4ac78302eae9d88_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:6daca9dff828394e3181355526276fdc6448eace218fc3c30b63b992bee5424d_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95938fed3fcf7e786bcc418e5cc05999519336dd9b1ae26ac09b87d122244ce9_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95c41160b310ef0c54ddab4fd77dfaf02faf62de58d15b3a90b375c76226181c_arm64",
            "9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:914d1985a1944cf4c25530b67aad321e7a8d6f28cfb7793b703b69456deecf8a_arm64",
            "9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:965a1522fc45c8aeff07508ba9291919bd007318da0511ee2ed4e4c18190ec71_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root"
    },
    {
      "cve": "CVE-2026-32283",
      "cwe": {
        "id": "CWE-764",
        "name": "Multiple Locks of a Critical Resource"
      },
      "discovery_date": "2026-04-08T02:01:16.213799+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f0b40e2312ae2659f9d0092a98488d7c5965ab33efe759ce78778b1b8173c5d6_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f2aeac65f02f6d21b497972087a808104100b547d92ab1a5656d91b48262c97d_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:231d5f0956e242c675b2f33df01d7a1fd9f44c9ee80f2b05731a60e0022e1483_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:8c6ca482631927526d6e8d1ca455cffc379d798c7d8d323c699e7ffc5ff44c88_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:2e68b360df2e9532458e97127a16e10765c3e7bbe4842d6ad48febca834af1f2_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:e0092c9adc9bf671729ec2a4682f3c53f1f12a9fdf09edf5f5c4b65172e04742_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:03b2d5ec8747fa2984b4659b0d61c5dd67dd729c6957918752b8033a3e6f40ec_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:5d356babef136df86f11f77ec595d9e9cc9a7f246eeb458e062757e273a9e803_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:5479230ed1ace22b8f00141796326cae84a772b1b6f14f52a58366a9695266da_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:b2a02cd673f7dd96218aa92a11bb924eb4538060f77fb8e773d0f13f5bdec55f_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:71ff61b5a765e62ef16bd633580dc9d49e8fcb46a68c3ee0e831d161b598956a_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:fb4b8f8338d6f3b7458ec9643d49175333a69d15650f026a1038836668f0c076_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:b3c9c59b462a94d181b51ee7419c5e89618da06bb70d7905f7efeeca12e57c6b_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:c4a8388737cd5330176421462353b4253dcbf4c7dc963b644b5d122cda3022d1_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:548ef61d03e7b861bed4b2f86cb826add8fcf13251d34562a4ac78302eae9d88_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:6daca9dff828394e3181355526276fdc6448eace218fc3c30b63b992bee5424d_arm64",
            "9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:914d1985a1944cf4c25530b67aad321e7a8d6f28cfb7793b703b69456deecf8a_arm64",
            "9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:965a1522fc45c8aeff07508ba9291919bd007318da0511ee2ed4e4c18190ec71_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456338"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the `crypto/tls` package within the Go (golang) standard library, specifically affecting TLS 1.3 connections. A remote attacker can exploit this vulnerability by sending multiple key update messages in a single record after the handshake. This can cause the connection to deadlock, leading to uncontrolled consumption of resources and ultimately a denial of service (DoS).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95938fed3fcf7e786bcc418e5cc05999519336dd9b1ae26ac09b87d122244ce9_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95c41160b310ef0c54ddab4fd77dfaf02faf62de58d15b3a90b375c76226181c_arm64"
        ],
        "known_not_affected": [
          "9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f0b40e2312ae2659f9d0092a98488d7c5965ab33efe759ce78778b1b8173c5d6_arm64",
          "9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f2aeac65f02f6d21b497972087a808104100b547d92ab1a5656d91b48262c97d_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:231d5f0956e242c675b2f33df01d7a1fd9f44c9ee80f2b05731a60e0022e1483_arm64",
          "9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:8c6ca482631927526d6e8d1ca455cffc379d798c7d8d323c699e7ffc5ff44c88_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:2e68b360df2e9532458e97127a16e10765c3e7bbe4842d6ad48febca834af1f2_arm64",
          "9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:e0092c9adc9bf671729ec2a4682f3c53f1f12a9fdf09edf5f5c4b65172e04742_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:03b2d5ec8747fa2984b4659b0d61c5dd67dd729c6957918752b8033a3e6f40ec_arm64",
          "9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:5d356babef136df86f11f77ec595d9e9cc9a7f246eeb458e062757e273a9e803_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:5479230ed1ace22b8f00141796326cae84a772b1b6f14f52a58366a9695266da_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:b2a02cd673f7dd96218aa92a11bb924eb4538060f77fb8e773d0f13f5bdec55f_arm64",
          "9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:71ff61b5a765e62ef16bd633580dc9d49e8fcb46a68c3ee0e831d161b598956a_arm64",
          "9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:fb4b8f8338d6f3b7458ec9643d49175333a69d15650f026a1038836668f0c076_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:b3c9c59b462a94d181b51ee7419c5e89618da06bb70d7905f7efeeca12e57c6b_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:c4a8388737cd5330176421462353b4253dcbf4c7dc963b644b5d122cda3022d1_arm64",
          "9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:548ef61d03e7b861bed4b2f86cb826add8fcf13251d34562a4ac78302eae9d88_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:6daca9dff828394e3181355526276fdc6448eace218fc3c30b63b992bee5424d_arm64",
          "9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:914d1985a1944cf4c25530b67aad321e7a8d6f28cfb7793b703b69456deecf8a_arm64",
          "9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:965a1522fc45c8aeff07508ba9291919bd007318da0511ee2ed4e4c18190ec71_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32283"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456338",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32283",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32283"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/763767",
          "url": "https://go.dev/cl/763767"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78334",
          "url": "https://go.dev/issue/78334"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4870",
          "url": "https://pkg.go.dev/vuln/GO-2026-4870"
        }
      ],
      "release_date": "2026-04-08T01:06:57.670000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-06T21:10:06+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95938fed3fcf7e786bcc418e5cc05999519336dd9b1ae26ac09b87d122244ce9_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95c41160b310ef0c54ddab4fd77dfaf02faf62de58d15b3a90b375c76226181c_arm64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:14391"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f0b40e2312ae2659f9d0092a98488d7c5965ab33efe759ce78778b1b8173c5d6_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f2aeac65f02f6d21b497972087a808104100b547d92ab1a5656d91b48262c97d_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:231d5f0956e242c675b2f33df01d7a1fd9f44c9ee80f2b05731a60e0022e1483_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:8c6ca482631927526d6e8d1ca455cffc379d798c7d8d323c699e7ffc5ff44c88_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:2e68b360df2e9532458e97127a16e10765c3e7bbe4842d6ad48febca834af1f2_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:e0092c9adc9bf671729ec2a4682f3c53f1f12a9fdf09edf5f5c4b65172e04742_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:03b2d5ec8747fa2984b4659b0d61c5dd67dd729c6957918752b8033a3e6f40ec_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:5d356babef136df86f11f77ec595d9e9cc9a7f246eeb458e062757e273a9e803_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:5479230ed1ace22b8f00141796326cae84a772b1b6f14f52a58366a9695266da_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:b2a02cd673f7dd96218aa92a11bb924eb4538060f77fb8e773d0f13f5bdec55f_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:71ff61b5a765e62ef16bd633580dc9d49e8fcb46a68c3ee0e831d161b598956a_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:fb4b8f8338d6f3b7458ec9643d49175333a69d15650f026a1038836668f0c076_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:b3c9c59b462a94d181b51ee7419c5e89618da06bb70d7905f7efeeca12e57c6b_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:c4a8388737cd5330176421462353b4253dcbf4c7dc963b644b5d122cda3022d1_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:548ef61d03e7b861bed4b2f86cb826add8fcf13251d34562a4ac78302eae9d88_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:6daca9dff828394e3181355526276fdc6448eace218fc3c30b63b992bee5424d_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95938fed3fcf7e786bcc418e5cc05999519336dd9b1ae26ac09b87d122244ce9_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95c41160b310ef0c54ddab4fd77dfaf02faf62de58d15b3a90b375c76226181c_arm64",
            "9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:914d1985a1944cf4c25530b67aad321e7a8d6f28cfb7793b703b69456deecf8a_arm64",
            "9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:965a1522fc45c8aeff07508ba9291919bd007318da0511ee2ed4e4c18190ec71_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages"
    },
    {
      "cve": "CVE-2026-33810",
      "cwe": {
        "id": "CWE-1289",
        "name": "Improper Validation of Unsafe Equivalence in Input"
      },
      "discovery_date": "2026-04-08T02:01:09.100830+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f0b40e2312ae2659f9d0092a98488d7c5965ab33efe759ce78778b1b8173c5d6_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f2aeac65f02f6d21b497972087a808104100b547d92ab1a5656d91b48262c97d_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:231d5f0956e242c675b2f33df01d7a1fd9f44c9ee80f2b05731a60e0022e1483_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:8c6ca482631927526d6e8d1ca455cffc379d798c7d8d323c699e7ffc5ff44c88_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:2e68b360df2e9532458e97127a16e10765c3e7bbe4842d6ad48febca834af1f2_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:e0092c9adc9bf671729ec2a4682f3c53f1f12a9fdf09edf5f5c4b65172e04742_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:03b2d5ec8747fa2984b4659b0d61c5dd67dd729c6957918752b8033a3e6f40ec_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:5d356babef136df86f11f77ec595d9e9cc9a7f246eeb458e062757e273a9e803_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:5479230ed1ace22b8f00141796326cae84a772b1b6f14f52a58366a9695266da_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:b2a02cd673f7dd96218aa92a11bb924eb4538060f77fb8e773d0f13f5bdec55f_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:71ff61b5a765e62ef16bd633580dc9d49e8fcb46a68c3ee0e831d161b598956a_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:fb4b8f8338d6f3b7458ec9643d49175333a69d15650f026a1038836668f0c076_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:b3c9c59b462a94d181b51ee7419c5e89618da06bb70d7905f7efeeca12e57c6b_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:c4a8388737cd5330176421462353b4253dcbf4c7dc963b644b5d122cda3022d1_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:548ef61d03e7b861bed4b2f86cb826add8fcf13251d34562a4ac78302eae9d88_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:6daca9dff828394e3181355526276fdc6448eace218fc3c30b63b992bee5424d_arm64",
            "9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:914d1985a1944cf4c25530b67aad321e7a8d6f28cfb7793b703b69456deecf8a_arm64",
            "9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:965a1522fc45c8aeff07508ba9291919bd007318da0511ee2ed4e4c18190ec71_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456335"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95938fed3fcf7e786bcc418e5cc05999519336dd9b1ae26ac09b87d122244ce9_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95c41160b310ef0c54ddab4fd77dfaf02faf62de58d15b3a90b375c76226181c_arm64"
        ],
        "known_not_affected": [
          "9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f0b40e2312ae2659f9d0092a98488d7c5965ab33efe759ce78778b1b8173c5d6_arm64",
          "9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f2aeac65f02f6d21b497972087a808104100b547d92ab1a5656d91b48262c97d_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:231d5f0956e242c675b2f33df01d7a1fd9f44c9ee80f2b05731a60e0022e1483_arm64",
          "9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:8c6ca482631927526d6e8d1ca455cffc379d798c7d8d323c699e7ffc5ff44c88_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:2e68b360df2e9532458e97127a16e10765c3e7bbe4842d6ad48febca834af1f2_arm64",
          "9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:e0092c9adc9bf671729ec2a4682f3c53f1f12a9fdf09edf5f5c4b65172e04742_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:03b2d5ec8747fa2984b4659b0d61c5dd67dd729c6957918752b8033a3e6f40ec_arm64",
          "9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:5d356babef136df86f11f77ec595d9e9cc9a7f246eeb458e062757e273a9e803_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:5479230ed1ace22b8f00141796326cae84a772b1b6f14f52a58366a9695266da_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:b2a02cd673f7dd96218aa92a11bb924eb4538060f77fb8e773d0f13f5bdec55f_arm64",
          "9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:71ff61b5a765e62ef16bd633580dc9d49e8fcb46a68c3ee0e831d161b598956a_arm64",
          "9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:fb4b8f8338d6f3b7458ec9643d49175333a69d15650f026a1038836668f0c076_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:b3c9c59b462a94d181b51ee7419c5e89618da06bb70d7905f7efeeca12e57c6b_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:c4a8388737cd5330176421462353b4253dcbf4c7dc963b644b5d122cda3022d1_arm64",
          "9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:548ef61d03e7b861bed4b2f86cb826add8fcf13251d34562a4ac78302eae9d88_amd64",
          "9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:6daca9dff828394e3181355526276fdc6448eace218fc3c30b63b992bee5424d_arm64",
          "9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:914d1985a1944cf4c25530b67aad321e7a8d6f28cfb7793b703b69456deecf8a_arm64",
          "9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:965a1522fc45c8aeff07508ba9291919bd007318da0511ee2ed4e4c18190ec71_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456335",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456335"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33810",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/763763",
          "url": "https://go.dev/cl/763763"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78332",
          "url": "https://go.dev/issue/78332"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4866",
          "url": "https://pkg.go.dev/vuln/GO-2026-4866"
        }
      ],
      "release_date": "2026-04-08T01:06:56.546000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-06T21:10:06+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95938fed3fcf7e786bcc418e5cc05999519336dd9b1ae26ac09b87d122244ce9_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95c41160b310ef0c54ddab4fd77dfaf02faf62de58d15b3a90b375c76226181c_arm64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:14391"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f0b40e2312ae2659f9d0092a98488d7c5965ab33efe759ce78778b1b8173c5d6_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-agent-init-rhel9@sha256:f2aeac65f02f6d21b497972087a808104100b547d92ab1a5656d91b48262c97d_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:231d5f0956e242c675b2f33df01d7a1fd9f44c9ee80f2b05731a60e0022e1483_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-db-rhel9@sha256:8c6ca482631927526d6e8d1ca455cffc379d798c7d8d323c699e7ffc5ff44c88_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:2e68b360df2e9532458e97127a16e10765c3e7bbe4842d6ad48febca834af1f2_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-grafana-dashboard-rhel9@sha256:e0092c9adc9bf671729ec2a4682f3c53f1f12a9fdf09edf5f5c4b65172e04742_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:03b2d5ec8747fa2984b4659b0d61c5dd67dd729c6957918752b8033a3e6f40ec_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-openshift-console-plugin-rhel9@sha256:5d356babef136df86f11f77ec595d9e9cc9a7f246eeb458e062757e273a9e803_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:5479230ed1ace22b8f00141796326cae84a772b1b6f14f52a58366a9695266da_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-operator-bundle@sha256:b2a02cd673f7dd96218aa92a11bb924eb4538060f77fb8e773d0f13f5bdec55f_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:71ff61b5a765e62ef16bd633580dc9d49e8fcb46a68c3ee0e831d161b598956a_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-reports-rhel9@sha256:fb4b8f8338d6f3b7458ec9643d49175333a69d15650f026a1038836668f0c076_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:b3c9c59b462a94d181b51ee7419c5e89618da06bb70d7905f7efeeca12e57c6b_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9-operator@sha256:c4a8388737cd5330176421462353b4253dcbf4c7dc963b644b5d122cda3022d1_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:548ef61d03e7b861bed4b2f86cb826add8fcf13251d34562a4ac78302eae9d88_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-rhel9@sha256:6daca9dff828394e3181355526276fdc6448eace218fc3c30b63b992bee5424d_arm64",
            "9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95938fed3fcf7e786bcc418e5cc05999519336dd9b1ae26ac09b87d122244ce9_amd64",
            "9Base-Cryostat-4:cryostat/cryostat-storage-rhel9@sha256:95c41160b310ef0c54ddab4fd77dfaf02faf62de58d15b3a90b375c76226181c_arm64",
            "9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:914d1985a1944cf4c25530b67aad321e7a8d6f28cfb7793b703b69456deecf8a_arm64",
            "9Base-Cryostat-4:cryostat/jfr-datasource-rhel9@sha256:965a1522fc45c8aeff07508ba9291919bd007318da0511ee2ed4e4c18190ec71_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application"
    }
  ]
}

RHSA-2026:19135

Vulnerability from csaf_redhat - Published: 2026-05-19 16:12 - Updated: 2026-06-08 07:56

Summary

Red Hat Security Advisory: opentelemetry-collector security update

Severity

Important

Notes

Topic: An update for opentelemetry-collector is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: Collector with the supported components for a Red Hat build of OpenTelemetry Security Fix(es): * net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679) * google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation (CVE-2026-33186) * github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object (CVE-2026-34986) * crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation (CVE-2026-32281) * crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application (CVE-2026-33810) * golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root (CVE-2026-32282) * crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages (CVE-2026-32283) * crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2026-25679

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1286 - Improper Validation of Syntactic Correctness of Input

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2026-32280

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2026-32281

A flaw was found in Go's `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.

5.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1050 - Excessive Platform Resource Consumption within a Loop

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2026-32282

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

CWE-367 - Time-of-check Time-of-use (TOCTOU) Race Condition

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2026-32283

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-764 - Multiple Locks of a Critical Resource

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2026-33186

9.1 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

CWE-551 - Incorrect Behavior Order: Authorization Before Parsing and Canonicalization

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2026-33810

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L

CWE-1289 - Improper Validation of Unsafe Equivalence in Input

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2026-34986

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-131 - Incorrect Calculation of Buffer Size

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

References

66 references

URL	Category
https://access.redhat.com/errata/RHSA-2026:19135	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2445356	external
https://bugzilla.redhat.com/show_bug.cgi?id=2449833	external
https://bugzilla.redhat.com/show_bug.cgi?id=2455470	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456333	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456335	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456336	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456338	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456339	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2026-25679	self
https://bugzilla.redhat.com/show_bug.cgi?id=2445356	external
https://www.cve.org/CVERecord?id=CVE-2026-25679	external
https://nvd.nist.gov/vuln/detail/CVE-2026-25679	external
https://go.dev/cl/752180	external
https://go.dev/issue/77578	external
https://groups.google.com/g/golang-announce/c/Edh…	external
https://pkg.go.dev/vuln/GO-2026-4601	external
https://access.redhat.com/security/cve/CVE-2026-32280	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456339	external
https://www.cve.org/CVERecord?id=CVE-2026-32280	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32280	external
https://go.dev/cl/758320	external
https://go.dev/issue/78282	external
https://groups.google.com/g/golang-announce/c/0uY…	external
https://pkg.go.dev/vuln/GO-2026-4947	external
https://access.redhat.com/security/cve/CVE-2026-32281	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456333	external
https://www.cve.org/CVERecord?id=CVE-2026-32281	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32281	external
https://go.dev/cl/758061	external
https://go.dev/issue/78281	external
https://pkg.go.dev/vuln/GO-2026-4946	external
https://access.redhat.com/security/cve/CVE-2026-32282	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456336	external
https://www.cve.org/CVERecord?id=CVE-2026-32282	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32282	external
https://go.dev/cl/763761	external
https://go.dev/issue/78293	external
https://pkg.go.dev/vuln/GO-2026-4864	external
https://access.redhat.com/security/cve/CVE-2026-32283	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456338	external
https://www.cve.org/CVERecord?id=CVE-2026-32283	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32283	external
https://go.dev/cl/763767	external
https://go.dev/issue/78334	external
https://pkg.go.dev/vuln/GO-2026-4870	external
https://access.redhat.com/security/cve/CVE-2026-33186	self
https://bugzilla.redhat.com/show_bug.cgi?id=2449833	external
https://www.cve.org/CVERecord?id=CVE-2026-33186	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33186	external
https://github.com/grpc/grpc-go/security/advisori…	external
https://access.redhat.com/security/cve/CVE-2026-33810	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456335	external
https://www.cve.org/CVERecord?id=CVE-2026-33810	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33810	external
https://go.dev/cl/763763	external
https://go.dev/issue/78332	external
https://pkg.go.dev/vuln/GO-2026-4866	external
https://access.redhat.com/security/cve/CVE-2026-34986	self
https://bugzilla.redhat.com/show_bug.cgi?id=2455470	external
https://www.cve.org/CVERecord?id=CVE-2026-34986	external
https://nvd.nist.gov/vuln/detail/CVE-2026-34986	external
https://github.com/go-jose/go-jose/security/advis…	external
https://pkg.go.dev/github.com/go-jose/go-jose/v4#…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for opentelemetry-collector is now available for Red Hat Enterprise Linux 10.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Collector with the supported components for a Red Hat build of OpenTelemetry\n\nSecurity Fix(es):\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\n* google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation (CVE-2026-33186)\n\n* github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object (CVE-2026-34986)\n\n* crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation (CVE-2026-32281)\n\n* crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application (CVE-2026-33810)\n\n* golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root (CVE-2026-32282)\n\n* crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages (CVE-2026-32283)\n\n* crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2026:19135",
        "url": "https://access.redhat.com/errata/RHSA-2026:19135"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2445356",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
      },
      {
        "category": "external",
        "summary": "2449833",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
      },
      {
        "category": "external",
        "summary": "2455470",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455470"
      },
      {
        "category": "external",
        "summary": "2456333",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
      },
      {
        "category": "external",
        "summary": "2456335",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456335"
      },
      {
        "category": "external",
        "summary": "2456336",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
      },
      {
        "category": "external",
        "summary": "2456338",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
      },
      {
        "category": "external",
        "summary": "2456339",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_19135.json"
      }
    ],
    "title": "Red Hat Security Advisory: opentelemetry-collector security update",
    "tracking": {
      "current_release_date": "2026-06-08T07:56:07+00:00",
      "generator": {
        "date": "2026-06-08T07:56:07+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.8.2"
        }
      },
      "id": "RHSA-2026:19135",
      "initial_release_date": "2026-05-19T16:12:41+00:00",
      "revision_history": [
        {
          "date": "2026-05-19T16:12:41+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2026-05-19T16:12:41+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-06-08T07:56:07+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream (v. 10)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream (v. 10)",
                  "product_id": "AppStream-10.2.Z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:10.2"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "opentelemetry-collector-0:0.144.0-2.el10_2.src",
                "product": {
                  "name": "opentelemetry-collector-0:0.144.0-2.el10_2.src",
                  "product_id": "opentelemetry-collector-0:0.144.0-2.el10_2.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/opentelemetry-collector@0.144.0-2.el10_2?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
                "product": {
                  "name": "opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
                  "product_id": "opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/opentelemetry-collector@0.144.0-2.el10_2?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
                "product": {
                  "name": "opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
                  "product_id": "opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/opentelemetry-collector@0.144.0-2.el10_2?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
                "product": {
                  "name": "opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
                  "product_id": "opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/opentelemetry-collector@0.144.0-2.el10_2?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "opentelemetry-collector-0:0.144.0-2.el10_2.x86_64",
                "product": {
                  "name": "opentelemetry-collector-0:0.144.0-2.el10_2.x86_64",
                  "product_id": "opentelemetry-collector-0:0.144.0-2.el10_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/opentelemetry-collector@0.144.0-2.el10_2?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opentelemetry-collector-0:0.144.0-2.el10_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64"
        },
        "product_reference": "opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le"
        },
        "product_reference": "opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opentelemetry-collector-0:0.144.0-2.el10_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x"
        },
        "product_reference": "opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opentelemetry-collector-0:0.144.0-2.el10_2.src as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src"
        },
        "product_reference": "opentelemetry-collector-0:0.144.0-2.el10_2.src",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opentelemetry-collector-0:0.144.0-2.el10_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
        },
        "product_reference": "opentelemetry-collector-0:0.144.0-2.el10_2.x86_64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2026-25679",
      "cwe": {
        "id": "CWE-1286",
        "name": "Improper Validation of Syntactic Correctness of Input"
      },
      "discovery_date": "2026-03-06T22:02:11.567841+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2445356"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-25679"
        },
        {
          "category": "external",
          "summary": "RHBZ#2445356",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/752180",
          "url": "https://go.dev/cl/752180"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/77578",
          "url": "https://go.dev/issue/77578"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
          "url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4601",
          "url": "https://pkg.go.dev/vuln/GO-2026-4601"
        }
      ],
      "release_date": "2026-03-06T21:28:14.211000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-19T16:12:41+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19135"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
    },
    {
      "cve": "CVE-2026-32280",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2026-04-08T02:01:19.572351+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456339"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456339",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32280",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/758320",
          "url": "https://go.dev/cl/758320"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78282",
          "url": "https://go.dev/issue/78282"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4947",
          "url": "https://pkg.go.dev/vuln/GO-2026-4947"
        }
      ],
      "release_date": "2026-04-08T01:06:58.595000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-19T16:12:41+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19135"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building"
    },
    {
      "cve": "CVE-2026-32281",
      "cwe": {
        "id": "CWE-1050",
        "name": "Excessive Platform Resource Consumption within a Loop"
      },
      "discovery_date": "2026-04-08T02:01:00.930989+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456333"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Go\u0027s `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This flaw occurs during the validation of otherwise trusted certificate chains that contain a large number of policy mappings, leading to excessive resource consumption. Exploitation requires an attacker to present a specially crafted, yet trusted, certificate chain which would require the attacker has already compromised a trusted certificate root. Red Hat continuously monitors certificate authorities and curates the set which is trusted by default for Red Hat products.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32281"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456333",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32281",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32281"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/758061",
          "url": "https://go.dev/cl/758061"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78281",
          "url": "https://go.dev/issue/78281"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4946",
          "url": "https://pkg.go.dev/vuln/GO-2026-4946"
        }
      ],
      "release_date": "2026-04-08T01:06:58.354000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-19T16:12:41+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19135"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation"
    },
    {
      "cve": "CVE-2026-32282",
      "cwe": {
        "id": "CWE-367",
        "name": "Time-of-check Time-of-use (TOCTOU) Race Condition"
      },
      "discovery_date": "2026-04-08T02:01:12.683211+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456336"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs access to the system and the required permissions to create a symbolic link. Additionally, the attacker must swap the target file with a symbolic link in the exact window after the `Root.Chmod` function checks its target but before acting. Due to these conditions, this flaw has been rated with a moderate severity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456336",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32282",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/763761",
          "url": "https://go.dev/cl/763761"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78293",
          "url": "https://go.dev/issue/78293"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4864",
          "url": "https://pkg.go.dev/vuln/GO-2026-4864"
        }
      ],
      "release_date": "2026-04-08T01:06:55.953000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-19T16:12:41+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19135"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root"
    },
    {
      "cve": "CVE-2026-32283",
      "cwe": {
        "id": "CWE-764",
        "name": "Multiple Locks of a Critical Resource"
      },
      "discovery_date": "2026-04-08T02:01:16.213799+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456338"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the `crypto/tls` package within the Go (golang) standard library, specifically affecting TLS 1.3 connections. A remote attacker can exploit this vulnerability by sending multiple key update messages in a single record after the handshake. This can cause the connection to deadlock, leading to uncontrolled consumption of resources and ultimately a denial of service (DoS).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32283"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456338",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32283",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32283"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/763767",
          "url": "https://go.dev/cl/763767"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78334",
          "url": "https://go.dev/issue/78334"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4870",
          "url": "https://pkg.go.dev/vuln/GO-2026-4870"
        }
      ],
      "release_date": "2026-04-08T01:06:57.670000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-19T16:12:41+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19135"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages"
    },
    {
      "cve": "CVE-2026-33186",
      "cwe": {
        "id": "CWE-551",
        "name": "Incorrect Behavior Order: Authorization Before Parsing and Canonicalization"
      },
      "discovery_date": "2026-03-20T23:02:27.802640+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2449833"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33186"
        },
        {
          "category": "external",
          "summary": "RHBZ#2449833",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33186",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33186"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186"
        },
        {
          "category": "external",
          "summary": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3",
          "url": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3"
        }
      ],
      "release_date": "2026-03-20T22:23:32.147000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-19T16:12:41+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19135"
        },
        {
          "category": "workaround",
          "details": "To mitigate this issue, implement infrastructure-level normalization to ensure all incoming HTTP/2 `:path` headers are properly formatted with a leading slash before reaching the gRPC-Go server. This can be achieved by configuring a reverse proxy or API gateway to validate and normalize the `:path` header. Ensure that any such intermediary is properly configured and restarted to apply the changes, which may temporarily impact service availability.",
          "product_ids": [
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 9.1,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation"
    },
    {
      "cve": "CVE-2026-33810",
      "cwe": {
        "id": "CWE-1289",
        "name": "Improper Validation of Unsafe Equivalence in Input"
      },
      "discovery_date": "2026-04-08T02:01:09.100830+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456335"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456335",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456335"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33810",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/763763",
          "url": "https://go.dev/cl/763763"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78332",
          "url": "https://go.dev/issue/78332"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4866",
          "url": "https://pkg.go.dev/vuln/GO-2026-4866"
        }
      ],
      "release_date": "2026-04-08T01:06:56.546000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-19T16:12:41+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19135"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application"
    },
    {
      "cve": "CVE-2026-34986",
      "cwe": {
        "id": "CWE-131",
        "name": "Incorrect Calculation of Buffer Size"
      },
      "discovery_date": "2026-04-06T17:01:34.639203+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2455470"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src",
          "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-34986"
        },
        {
          "category": "external",
          "summary": "RHBZ#2455470",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455470"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-34986",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-34986"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986"
        },
        {
          "category": "external",
          "summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8",
          "url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants",
          "url": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants"
        }
      ],
      "release_date": "2026-04-06T16:22:45.353000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-19T16:12:41+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19135"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.aarch64",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.ppc64le",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.s390x",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.src",
            "AppStream-10.2.Z:opentelemetry-collector-0:0.144.0-2.el10_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object"
    }
  ]
}

RHSA-2026:19144

Vulnerability from csaf_redhat - Published: 2026-05-19 16:19 - Updated: 2026-06-08 06:02

Summary

Red Hat Security Advisory: golang-github-openprinting-ipp-usb security update

Severity

Important

Notes

Topic: An update for golang-github-openprinting-ipp-usb is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: HTTP reverse proxy, backed by IPP-over-USB connection to device. It enables driverless support for USB devices capable of using IPP-over-USB protocol. Security Fix(es): * crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application (CVE-2026-33810) * golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root (CVE-2026-32282) * crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages (CVE-2026-32283) * crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2026-32280

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.x86_64	—	Vendor Fix fix

Known not affected 9 products

Product	Identifier	Version	Remediation
Unresolved product id: AppStream-10.2.Z:golang-github-openprinting-ipp-usb-0:0.9.27-7.el10_2.src		—
Unresolved product id: AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.aarch64		—
Unresolved product id: AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.ppc64le		—
Unresolved product id: AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.s390x		—
Unresolved product id: AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.x86_64		—
Unresolved product id: AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.aarch64		—
Unresolved product id: AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.ppc64le		—
Unresolved product id: AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.s390x		—
Unresolved product id: AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.x86_64		—

Threats

Impact Important

CVE-2026-32282

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

CWE-367 - Time-of-check Time-of-use (TOCTOU) Race Condition

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.x86_64	—	Vendor Fix fix Workaround

Known not affected 9 products

Product	Version	Remediation
Unresolved product id: AppStream-10.2.Z:golang-github-openprinting-ipp-usb-0:0.9.27-7.el10_2.src	—	Workaround
Unresolved product id: AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.aarch64	—	Workaround
Unresolved product id: AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.ppc64le	—	Workaround
Unresolved product id: AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.s390x	—	Workaround
Unresolved product id: AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.x86_64	—	Workaround
Unresolved product id: AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.aarch64	—	Workaround
Unresolved product id: AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.ppc64le	—	Workaround
Unresolved product id: AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.s390x	—	Workaround
Unresolved product id: AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.x86_64	—	Workaround

Threats

Impact Moderate

CVE-2026-32283

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-764 - Multiple Locks of a Critical Resource

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.x86_64	—	Vendor Fix fix

Known not affected 9 products

Product	Identifier	Version	Remediation
Unresolved product id: AppStream-10.2.Z:golang-github-openprinting-ipp-usb-0:0.9.27-7.el10_2.src		—
Unresolved product id: AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.aarch64		—
Unresolved product id: AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.ppc64le		—
Unresolved product id: AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.s390x		—
Unresolved product id: AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.x86_64		—
Unresolved product id: AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.aarch64		—
Unresolved product id: AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.ppc64le		—
Unresolved product id: AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.s390x		—
Unresolved product id: AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.x86_64		—

Threats

Impact Important

CVE-2026-33810

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L

CWE-1289 - Improper Validation of Unsafe Equivalence in Input

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.x86_64	—	Vendor Fix fix

Known not affected 9 products

Product	Identifier	Version	Remediation
Unresolved product id: AppStream-10.2.Z:golang-github-openprinting-ipp-usb-0:0.9.27-7.el10_2.src		—
Unresolved product id: AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.aarch64		—
Unresolved product id: AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.ppc64le		—
Unresolved product id: AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.s390x		—
Unresolved product id: AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.x86_64		—
Unresolved product id: AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.aarch64		—
Unresolved product id: AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.ppc64le		—
Unresolved product id: AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.s390x		—
Unresolved product id: AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.x86_64		—

Threats

Impact Important

References

36 references

URL	Category
https://access.redhat.com/errata/RHSA-2026:19144	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456335	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456336	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456338	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456339	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2026-32280	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456339	external
https://www.cve.org/CVERecord?id=CVE-2026-32280	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32280	external
https://go.dev/cl/758320	external
https://go.dev/issue/78282	external
https://groups.google.com/g/golang-announce/c/0uY…	external
https://pkg.go.dev/vuln/GO-2026-4947	external
https://access.redhat.com/security/cve/CVE-2026-32282	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456336	external
https://www.cve.org/CVERecord?id=CVE-2026-32282	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32282	external
https://go.dev/cl/763761	external
https://go.dev/issue/78293	external
https://pkg.go.dev/vuln/GO-2026-4864	external
https://access.redhat.com/security/cve/CVE-2026-32283	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456338	external
https://www.cve.org/CVERecord?id=CVE-2026-32283	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32283	external
https://go.dev/cl/763767	external
https://go.dev/issue/78334	external
https://pkg.go.dev/vuln/GO-2026-4870	external
https://access.redhat.com/security/cve/CVE-2026-33810	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456335	external
https://www.cve.org/CVERecord?id=CVE-2026-33810	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33810	external
https://go.dev/cl/763763	external
https://go.dev/issue/78332	external
https://pkg.go.dev/vuln/GO-2026-4866	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for golang-github-openprinting-ipp-usb is now available for Red Hat Enterprise Linux 10.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "HTTP reverse proxy, backed by IPP-over-USB connection to device. It enables\n driverless support for USB devices capable of using IPP-over-USB protocol.\n\nSecurity Fix(es):\n\n* crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application (CVE-2026-33810)\n\n* golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root (CVE-2026-32282)\n\n* crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages (CVE-2026-32283)\n\n* crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2026:19144",
        "url": "https://access.redhat.com/errata/RHSA-2026:19144"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2456335",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456335"
      },
      {
        "category": "external",
        "summary": "2456336",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
      },
      {
        "category": "external",
        "summary": "2456338",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
      },
      {
        "category": "external",
        "summary": "2456339",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_19144.json"
      }
    ],
    "title": "Red Hat Security Advisory: golang-github-openprinting-ipp-usb security update",
    "tracking": {
      "current_release_date": "2026-06-08T06:02:17+00:00",
      "generator": {
        "date": "2026-06-08T06:02:17+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.8.2"
        }
      },
      "id": "RHSA-2026:19144",
      "initial_release_date": "2026-05-19T16:19:36+00:00",
      "revision_history": [
        {
          "date": "2026-05-19T16:19:36+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2026-05-19T16:19:36+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-06-08T06:02:17+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream (v. 10)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream (v. 10)",
                  "product_id": "AppStream-10.2.Z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:10.2"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "golang-github-openprinting-ipp-usb-0:0.9.27-7.el10_2.src",
                "product": {
                  "name": "golang-github-openprinting-ipp-usb-0:0.9.27-7.el10_2.src",
                  "product_id": "golang-github-openprinting-ipp-usb-0:0.9.27-7.el10_2.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/golang-github-openprinting-ipp-usb@0.9.27-7.el10_2?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ipp-usb-0:0.9.27-7.el10_2.aarch64",
                "product": {
                  "name": "ipp-usb-0:0.9.27-7.el10_2.aarch64",
                  "product_id": "ipp-usb-0:0.9.27-7.el10_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ipp-usb@0.9.27-7.el10_2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.aarch64",
                "product": {
                  "name": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.aarch64",
                  "product_id": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/golang-github-openprinting-ipp-usb-debugsource@0.9.27-7.el10_2?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ipp-usb-debuginfo-0:0.9.27-7.el10_2.aarch64",
                "product": {
                  "name": "ipp-usb-debuginfo-0:0.9.27-7.el10_2.aarch64",
                  "product_id": "ipp-usb-debuginfo-0:0.9.27-7.el10_2.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ipp-usb-debuginfo@0.9.27-7.el10_2?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ipp-usb-0:0.9.27-7.el10_2.ppc64le",
                "product": {
                  "name": "ipp-usb-0:0.9.27-7.el10_2.ppc64le",
                  "product_id": "ipp-usb-0:0.9.27-7.el10_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ipp-usb@0.9.27-7.el10_2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.ppc64le",
                "product": {
                  "name": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.ppc64le",
                  "product_id": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/golang-github-openprinting-ipp-usb-debugsource@0.9.27-7.el10_2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ipp-usb-debuginfo-0:0.9.27-7.el10_2.ppc64le",
                "product": {
                  "name": "ipp-usb-debuginfo-0:0.9.27-7.el10_2.ppc64le",
                  "product_id": "ipp-usb-debuginfo-0:0.9.27-7.el10_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ipp-usb-debuginfo@0.9.27-7.el10_2?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ipp-usb-0:0.9.27-7.el10_2.s390x",
                "product": {
                  "name": "ipp-usb-0:0.9.27-7.el10_2.s390x",
                  "product_id": "ipp-usb-0:0.9.27-7.el10_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ipp-usb@0.9.27-7.el10_2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.s390x",
                "product": {
                  "name": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.s390x",
                  "product_id": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/golang-github-openprinting-ipp-usb-debugsource@0.9.27-7.el10_2?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ipp-usb-debuginfo-0:0.9.27-7.el10_2.s390x",
                "product": {
                  "name": "ipp-usb-debuginfo-0:0.9.27-7.el10_2.s390x",
                  "product_id": "ipp-usb-debuginfo-0:0.9.27-7.el10_2.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ipp-usb-debuginfo@0.9.27-7.el10_2?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ipp-usb-0:0.9.27-7.el10_2.x86_64",
                "product": {
                  "name": "ipp-usb-0:0.9.27-7.el10_2.x86_64",
                  "product_id": "ipp-usb-0:0.9.27-7.el10_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ipp-usb@0.9.27-7.el10_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.x86_64",
                "product": {
                  "name": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.x86_64",
                  "product_id": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/golang-github-openprinting-ipp-usb-debugsource@0.9.27-7.el10_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ipp-usb-debuginfo-0:0.9.27-7.el10_2.x86_64",
                "product": {
                  "name": "ipp-usb-debuginfo-0:0.9.27-7.el10_2.x86_64",
                  "product_id": "ipp-usb-debuginfo-0:0.9.27-7.el10_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ipp-usb-debuginfo@0.9.27-7.el10_2?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "golang-github-openprinting-ipp-usb-0:0.9.27-7.el10_2.src as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-0:0.9.27-7.el10_2.src"
        },
        "product_reference": "golang-github-openprinting-ipp-usb-0:0.9.27-7.el10_2.src",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.aarch64"
        },
        "product_reference": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.aarch64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.ppc64le"
        },
        "product_reference": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.ppc64le",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.s390x"
        },
        "product_reference": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.s390x",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.x86_64"
        },
        "product_reference": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.x86_64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipp-usb-0:0.9.27-7.el10_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.aarch64"
        },
        "product_reference": "ipp-usb-0:0.9.27-7.el10_2.aarch64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipp-usb-0:0.9.27-7.el10_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.ppc64le"
        },
        "product_reference": "ipp-usb-0:0.9.27-7.el10_2.ppc64le",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipp-usb-0:0.9.27-7.el10_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.s390x"
        },
        "product_reference": "ipp-usb-0:0.9.27-7.el10_2.s390x",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipp-usb-0:0.9.27-7.el10_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.x86_64"
        },
        "product_reference": "ipp-usb-0:0.9.27-7.el10_2.x86_64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipp-usb-debuginfo-0:0.9.27-7.el10_2.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.aarch64"
        },
        "product_reference": "ipp-usb-debuginfo-0:0.9.27-7.el10_2.aarch64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipp-usb-debuginfo-0:0.9.27-7.el10_2.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.ppc64le"
        },
        "product_reference": "ipp-usb-debuginfo-0:0.9.27-7.el10_2.ppc64le",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipp-usb-debuginfo-0:0.9.27-7.el10_2.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.s390x"
        },
        "product_reference": "ipp-usb-debuginfo-0:0.9.27-7.el10_2.s390x",
        "relates_to_product_reference": "AppStream-10.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ipp-usb-debuginfo-0:0.9.27-7.el10_2.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
          "product_id": "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.x86_64"
        },
        "product_reference": "ipp-usb-debuginfo-0:0.9.27-7.el10_2.x86_64",
        "relates_to_product_reference": "AppStream-10.2.Z"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2026-32280",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2026-04-08T02:01:19.572351+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-0:0.9.27-7.el10_2.src",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.aarch64",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.ppc64le",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.s390x",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.x86_64",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.aarch64",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.ppc64le",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.s390x",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456339"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.aarch64",
          "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.ppc64le",
          "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.s390x",
          "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.x86_64"
        ],
        "known_not_affected": [
          "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-0:0.9.27-7.el10_2.src",
          "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.aarch64",
          "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.ppc64le",
          "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.s390x",
          "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.x86_64",
          "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.aarch64",
          "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.ppc64le",
          "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.s390x",
          "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456339",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32280",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/758320",
          "url": "https://go.dev/cl/758320"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78282",
          "url": "https://go.dev/issue/78282"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4947",
          "url": "https://pkg.go.dev/vuln/GO-2026-4947"
        }
      ],
      "release_date": "2026-04-08T01:06:58.595000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-19T16:19:36+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.aarch64",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.ppc64le",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.s390x",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19144"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-0:0.9.27-7.el10_2.src",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.aarch64",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.ppc64le",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.s390x",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.x86_64",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.aarch64",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.ppc64le",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.s390x",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.x86_64",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.aarch64",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.ppc64le",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.s390x",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building"
    },
    {
      "cve": "CVE-2026-32282",
      "cwe": {
        "id": "CWE-367",
        "name": "Time-of-check Time-of-use (TOCTOU) Race Condition"
      },
      "discovery_date": "2026-04-08T02:01:12.683211+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-0:0.9.27-7.el10_2.src",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.aarch64",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.ppc64le",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.s390x",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.x86_64",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.aarch64",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.ppc64le",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.s390x",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456336"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs access to the system and the required permissions to create a symbolic link. Additionally, the attacker must swap the target file with a symbolic link in the exact window after the `Root.Chmod` function checks its target but before acting. Due to these conditions, this flaw has been rated with a moderate severity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.aarch64",
          "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.ppc64le",
          "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.s390x",
          "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.x86_64"
        ],
        "known_not_affected": [
          "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-0:0.9.27-7.el10_2.src",
          "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.aarch64",
          "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.ppc64le",
          "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.s390x",
          "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.x86_64",
          "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.aarch64",
          "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.ppc64le",
          "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.s390x",
          "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456336",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32282",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/763761",
          "url": "https://go.dev/cl/763761"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78293",
          "url": "https://go.dev/issue/78293"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4864",
          "url": "https://pkg.go.dev/vuln/GO-2026-4864"
        }
      ],
      "release_date": "2026-04-08T01:06:55.953000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-19T16:19:36+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.aarch64",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.ppc64le",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.s390x",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19144"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-0:0.9.27-7.el10_2.src",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.aarch64",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.ppc64le",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.s390x",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.x86_64",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.aarch64",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.ppc64le",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.s390x",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.x86_64",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.aarch64",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.ppc64le",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.s390x",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-0:0.9.27-7.el10_2.src",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.aarch64",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.ppc64le",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.s390x",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.x86_64",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.aarch64",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.ppc64le",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.s390x",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.x86_64",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.aarch64",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.ppc64le",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.s390x",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root"
    },
    {
      "cve": "CVE-2026-32283",
      "cwe": {
        "id": "CWE-764",
        "name": "Multiple Locks of a Critical Resource"
      },
      "discovery_date": "2026-04-08T02:01:16.213799+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-0:0.9.27-7.el10_2.src",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.aarch64",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.ppc64le",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.s390x",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.x86_64",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.aarch64",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.ppc64le",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.s390x",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456338"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the `crypto/tls` package within the Go (golang) standard library, specifically affecting TLS 1.3 connections. A remote attacker can exploit this vulnerability by sending multiple key update messages in a single record after the handshake. This can cause the connection to deadlock, leading to uncontrolled consumption of resources and ultimately a denial of service (DoS).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.aarch64",
          "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.ppc64le",
          "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.s390x",
          "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.x86_64"
        ],
        "known_not_affected": [
          "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-0:0.9.27-7.el10_2.src",
          "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.aarch64",
          "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.ppc64le",
          "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.s390x",
          "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.x86_64",
          "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.aarch64",
          "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.ppc64le",
          "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.s390x",
          "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32283"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456338",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32283",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32283"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/763767",
          "url": "https://go.dev/cl/763767"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78334",
          "url": "https://go.dev/issue/78334"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4870",
          "url": "https://pkg.go.dev/vuln/GO-2026-4870"
        }
      ],
      "release_date": "2026-04-08T01:06:57.670000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-19T16:19:36+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.aarch64",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.ppc64le",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.s390x",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19144"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-0:0.9.27-7.el10_2.src",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.aarch64",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.ppc64le",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.s390x",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.x86_64",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.aarch64",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.ppc64le",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.s390x",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.x86_64",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.aarch64",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.ppc64le",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.s390x",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages"
    },
    {
      "cve": "CVE-2026-33810",
      "cwe": {
        "id": "CWE-1289",
        "name": "Improper Validation of Unsafe Equivalence in Input"
      },
      "discovery_date": "2026-04-08T02:01:09.100830+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-0:0.9.27-7.el10_2.src",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.aarch64",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.ppc64le",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.s390x",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.x86_64",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.aarch64",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.ppc64le",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.s390x",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456335"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.aarch64",
          "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.ppc64le",
          "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.s390x",
          "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.x86_64"
        ],
        "known_not_affected": [
          "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-0:0.9.27-7.el10_2.src",
          "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.aarch64",
          "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.ppc64le",
          "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.s390x",
          "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.x86_64",
          "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.aarch64",
          "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.ppc64le",
          "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.s390x",
          "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456335",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456335"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33810",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/763763",
          "url": "https://go.dev/cl/763763"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78332",
          "url": "https://go.dev/issue/78332"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4866",
          "url": "https://pkg.go.dev/vuln/GO-2026-4866"
        }
      ],
      "release_date": "2026-04-08T01:06:56.546000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-19T16:19:36+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.aarch64",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.ppc64le",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.s390x",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19144"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-0:0.9.27-7.el10_2.src",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.aarch64",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.ppc64le",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.s390x",
            "AppStream-10.2.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-7.el10_2.x86_64",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.aarch64",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.ppc64le",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.s390x",
            "AppStream-10.2.Z:ipp-usb-0:0.9.27-7.el10_2.x86_64",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.aarch64",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.ppc64le",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.s390x",
            "AppStream-10.2.Z:ipp-usb-debuginfo-0:0.9.27-7.el10_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application"
    }
  ]
}

RHSA-2026:19353

Vulnerability from csaf_redhat - Published: 2026-05-19 21:46 - Updated: 2026-06-08 07:56

Summary

Red Hat Security Advisory: opentelemetry-collector security update

Severity

Important

Notes

Topic: An update for opentelemetry-collector is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

CVE-2026-25679

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1286 - Improper Validation of Syntactic Correctness of Input

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2026-32280

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2026-32281

5.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1050 - Excessive Platform Resource Consumption within a Loop

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2026-32282

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

CWE-367 - Time-of-check Time-of-use (TOCTOU) Race Condition

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2026-32283

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-764 - Multiple Locks of a Critical Resource

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2026-33186

9.1 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

CWE-551 - Incorrect Behavior Order: Authorization Before Parsing and Canonicalization

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2026-33810

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L

CWE-1289 - Improper Validation of Unsafe Equivalence in Input

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2026-34986

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-131 - Incorrect Calculation of Buffer Size

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

References

66 references

URL	Category
https://access.redhat.com/errata/RHSA-2026:19353	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2445356	external
https://bugzilla.redhat.com/show_bug.cgi?id=2449833	external
https://bugzilla.redhat.com/show_bug.cgi?id=2455470	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456333	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456335	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456336	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456338	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456339	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2026-25679	self
https://bugzilla.redhat.com/show_bug.cgi?id=2445356	external
https://www.cve.org/CVERecord?id=CVE-2026-25679	external
https://nvd.nist.gov/vuln/detail/CVE-2026-25679	external
https://go.dev/cl/752180	external
https://go.dev/issue/77578	external
https://groups.google.com/g/golang-announce/c/Edh…	external
https://pkg.go.dev/vuln/GO-2026-4601	external
https://access.redhat.com/security/cve/CVE-2026-32280	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456339	external
https://www.cve.org/CVERecord?id=CVE-2026-32280	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32280	external
https://go.dev/cl/758320	external
https://go.dev/issue/78282	external
https://groups.google.com/g/golang-announce/c/0uY…	external
https://pkg.go.dev/vuln/GO-2026-4947	external
https://access.redhat.com/security/cve/CVE-2026-32281	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456333	external
https://www.cve.org/CVERecord?id=CVE-2026-32281	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32281	external
https://go.dev/cl/758061	external
https://go.dev/issue/78281	external
https://pkg.go.dev/vuln/GO-2026-4946	external
https://access.redhat.com/security/cve/CVE-2026-32282	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456336	external
https://www.cve.org/CVERecord?id=CVE-2026-32282	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32282	external
https://go.dev/cl/763761	external
https://go.dev/issue/78293	external
https://pkg.go.dev/vuln/GO-2026-4864	external
https://access.redhat.com/security/cve/CVE-2026-32283	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456338	external
https://www.cve.org/CVERecord?id=CVE-2026-32283	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32283	external
https://go.dev/cl/763767	external
https://go.dev/issue/78334	external
https://pkg.go.dev/vuln/GO-2026-4870	external
https://access.redhat.com/security/cve/CVE-2026-33186	self
https://bugzilla.redhat.com/show_bug.cgi?id=2449833	external
https://www.cve.org/CVERecord?id=CVE-2026-33186	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33186	external
https://github.com/grpc/grpc-go/security/advisori…	external
https://access.redhat.com/security/cve/CVE-2026-33810	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456335	external
https://www.cve.org/CVERecord?id=CVE-2026-33810	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33810	external
https://go.dev/cl/763763	external
https://go.dev/issue/78332	external
https://pkg.go.dev/vuln/GO-2026-4866	external
https://access.redhat.com/security/cve/CVE-2026-34986	self
https://bugzilla.redhat.com/show_bug.cgi?id=2455470	external
https://www.cve.org/CVERecord?id=CVE-2026-34986	external
https://nvd.nist.gov/vuln/detail/CVE-2026-34986	external
https://github.com/go-jose/go-jose/security/advis…	external
https://pkg.go.dev/github.com/go-jose/go-jose/v4#…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for opentelemetry-collector is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Collector with the supported components for a Red Hat build of OpenTelemetry\n\nSecurity Fix(es):\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\n* google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation (CVE-2026-33186)\n\n* github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object (CVE-2026-34986)\n\n* crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation (CVE-2026-32281)\n\n* crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application (CVE-2026-33810)\n\n* golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root (CVE-2026-32282)\n\n* crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages (CVE-2026-32283)\n\n* crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2026:19353",
        "url": "https://access.redhat.com/errata/RHSA-2026:19353"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2445356",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
      },
      {
        "category": "external",
        "summary": "2449833",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
      },
      {
        "category": "external",
        "summary": "2455470",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455470"
      },
      {
        "category": "external",
        "summary": "2456333",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
      },
      {
        "category": "external",
        "summary": "2456335",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456335"
      },
      {
        "category": "external",
        "summary": "2456336",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
      },
      {
        "category": "external",
        "summary": "2456338",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
      },
      {
        "category": "external",
        "summary": "2456339",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_19353.json"
      }
    ],
    "title": "Red Hat Security Advisory: opentelemetry-collector security update",
    "tracking": {
      "current_release_date": "2026-06-08T07:56:05+00:00",
      "generator": {
        "date": "2026-06-08T07:56:05+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.8.2"
        }
      },
      "id": "RHSA-2026:19353",
      "initial_release_date": "2026-05-19T21:46:38+00:00",
      "revision_history": [
        {
          "date": "2026-05-19T21:46:38+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2026-05-19T21:46:38+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-06-08T07:56:05+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream (v. 9)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream (v. 9)",
                  "product_id": "AppStream-9.8.0.Z.MAIN.EUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "opentelemetry-collector-0:0.144.0-2.el9_8.src",
                "product": {
                  "name": "opentelemetry-collector-0:0.144.0-2.el9_8.src",
                  "product_id": "opentelemetry-collector-0:0.144.0-2.el9_8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/opentelemetry-collector@0.144.0-2.el9_8?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
                "product": {
                  "name": "opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
                  "product_id": "opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/opentelemetry-collector@0.144.0-2.el9_8?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
                "product": {
                  "name": "opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
                  "product_id": "opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/opentelemetry-collector@0.144.0-2.el9_8?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "opentelemetry-collector-0:0.144.0-2.el9_8.x86_64",
                "product": {
                  "name": "opentelemetry-collector-0:0.144.0-2.el9_8.x86_64",
                  "product_id": "opentelemetry-collector-0:0.144.0-2.el9_8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/opentelemetry-collector@0.144.0-2.el9_8?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
                "product": {
                  "name": "opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
                  "product_id": "opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/opentelemetry-collector@0.144.0-2.el9_8?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opentelemetry-collector-0:0.144.0-2.el9_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64"
        },
        "product_reference": "opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le"
        },
        "product_reference": "opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opentelemetry-collector-0:0.144.0-2.el9_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x"
        },
        "product_reference": "opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opentelemetry-collector-0:0.144.0-2.el9_8.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src"
        },
        "product_reference": "opentelemetry-collector-0:0.144.0-2.el9_8.src",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opentelemetry-collector-0:0.144.0-2.el9_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
          "product_id": "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
        },
        "product_reference": "opentelemetry-collector-0:0.144.0-2.el9_8.x86_64",
        "relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2026-25679",
      "cwe": {
        "id": "CWE-1286",
        "name": "Improper Validation of Syntactic Correctness of Input"
      },
      "discovery_date": "2026-03-06T22:02:11.567841+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2445356"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-25679"
        },
        {
          "category": "external",
          "summary": "RHBZ#2445356",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/752180",
          "url": "https://go.dev/cl/752180"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/77578",
          "url": "https://go.dev/issue/77578"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
          "url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4601",
          "url": "https://pkg.go.dev/vuln/GO-2026-4601"
        }
      ],
      "release_date": "2026-03-06T21:28:14.211000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-19T21:46:38+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19353"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
    },
    {
      "cve": "CVE-2026-32280",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2026-04-08T02:01:19.572351+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456339"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456339",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32280",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/758320",
          "url": "https://go.dev/cl/758320"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78282",
          "url": "https://go.dev/issue/78282"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4947",
          "url": "https://pkg.go.dev/vuln/GO-2026-4947"
        }
      ],
      "release_date": "2026-04-08T01:06:58.595000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-19T21:46:38+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19353"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building"
    },
    {
      "cve": "CVE-2026-32281",
      "cwe": {
        "id": "CWE-1050",
        "name": "Excessive Platform Resource Consumption within a Loop"
      },
      "discovery_date": "2026-04-08T02:01:00.930989+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456333"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Go\u0027s `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This flaw occurs during the validation of otherwise trusted certificate chains that contain a large number of policy mappings, leading to excessive resource consumption. Exploitation requires an attacker to present a specially crafted, yet trusted, certificate chain which would require the attacker has already compromised a trusted certificate root. Red Hat continuously monitors certificate authorities and curates the set which is trusted by default for Red Hat products.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32281"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456333",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32281",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32281"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/758061",
          "url": "https://go.dev/cl/758061"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78281",
          "url": "https://go.dev/issue/78281"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4946",
          "url": "https://pkg.go.dev/vuln/GO-2026-4946"
        }
      ],
      "release_date": "2026-04-08T01:06:58.354000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-19T21:46:38+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19353"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation"
    },
    {
      "cve": "CVE-2026-32282",
      "cwe": {
        "id": "CWE-367",
        "name": "Time-of-check Time-of-use (TOCTOU) Race Condition"
      },
      "discovery_date": "2026-04-08T02:01:12.683211+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456336"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs access to the system and the required permissions to create a symbolic link. Additionally, the attacker must swap the target file with a symbolic link in the exact window after the `Root.Chmod` function checks its target but before acting. Due to these conditions, this flaw has been rated with a moderate severity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456336",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32282",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/763761",
          "url": "https://go.dev/cl/763761"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78293",
          "url": "https://go.dev/issue/78293"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4864",
          "url": "https://pkg.go.dev/vuln/GO-2026-4864"
        }
      ],
      "release_date": "2026-04-08T01:06:55.953000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-19T21:46:38+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19353"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root"
    },
    {
      "cve": "CVE-2026-32283",
      "cwe": {
        "id": "CWE-764",
        "name": "Multiple Locks of a Critical Resource"
      },
      "discovery_date": "2026-04-08T02:01:16.213799+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456338"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the `crypto/tls` package within the Go (golang) standard library, specifically affecting TLS 1.3 connections. A remote attacker can exploit this vulnerability by sending multiple key update messages in a single record after the handshake. This can cause the connection to deadlock, leading to uncontrolled consumption of resources and ultimately a denial of service (DoS).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32283"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456338",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32283",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32283"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/763767",
          "url": "https://go.dev/cl/763767"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78334",
          "url": "https://go.dev/issue/78334"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4870",
          "url": "https://pkg.go.dev/vuln/GO-2026-4870"
        }
      ],
      "release_date": "2026-04-08T01:06:57.670000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-19T21:46:38+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19353"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages"
    },
    {
      "cve": "CVE-2026-33186",
      "cwe": {
        "id": "CWE-551",
        "name": "Incorrect Behavior Order: Authorization Before Parsing and Canonicalization"
      },
      "discovery_date": "2026-03-20T23:02:27.802640+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2449833"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33186"
        },
        {
          "category": "external",
          "summary": "RHBZ#2449833",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33186",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33186"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186"
        },
        {
          "category": "external",
          "summary": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3",
          "url": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3"
        }
      ],
      "release_date": "2026-03-20T22:23:32.147000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-19T21:46:38+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19353"
        },
        {
          "category": "workaround",
          "details": "To mitigate this issue, implement infrastructure-level normalization to ensure all incoming HTTP/2 `:path` headers are properly formatted with a leading slash before reaching the gRPC-Go server. This can be achieved by configuring a reverse proxy or API gateway to validate and normalize the `:path` header. Ensure that any such intermediary is properly configured and restarted to apply the changes, which may temporarily impact service availability.",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 9.1,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation"
    },
    {
      "cve": "CVE-2026-33810",
      "cwe": {
        "id": "CWE-1289",
        "name": "Improper Validation of Unsafe Equivalence in Input"
      },
      "discovery_date": "2026-04-08T02:01:09.100830+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456335"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456335",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456335"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33810",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/763763",
          "url": "https://go.dev/cl/763763"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78332",
          "url": "https://go.dev/issue/78332"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4866",
          "url": "https://pkg.go.dev/vuln/GO-2026-4866"
        }
      ],
      "release_date": "2026-04-08T01:06:56.546000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-19T21:46:38+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19353"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application"
    },
    {
      "cve": "CVE-2026-34986",
      "cwe": {
        "id": "CWE-131",
        "name": "Incorrect Calculation of Buffer Size"
      },
      "discovery_date": "2026-04-06T17:01:34.639203+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2455470"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src",
          "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-34986"
        },
        {
          "category": "external",
          "summary": "RHBZ#2455470",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455470"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-34986",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-34986"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986"
        },
        {
          "category": "external",
          "summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8",
          "url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants",
          "url": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants"
        }
      ],
      "release_date": "2026-04-06T16:22:45.353000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-19T21:46:38+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19353"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.aarch64",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.ppc64le",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.s390x",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.src",
            "AppStream-9.8.0.Z.MAIN.EUS:opentelemetry-collector-0:0.144.0-2.el9_8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object"
    }
  ]
}

RHSA-2026:19719

Vulnerability from csaf_redhat - Published: 2026-05-20 16:45 - Updated: 2026-06-08 07:56

Summary

Red Hat Security Advisory: opentelemetry-collector security update

Severity

Important

Notes

Topic: An update for opentelemetry-collector is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

CVE-2026-25679

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1286 - Improper Validation of Syntactic Correctness of Input

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2026-32280

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src	—	Vendor Fix fix
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2026-32281

5.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1050 - Excessive Platform Resource Consumption within a Loop

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2026-32282

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

CWE-367 - Time-of-check Time-of-use (TOCTOU) Race Condition

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2026-32283

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-764 - Multiple Locks of a Critical Resource

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src	—	Vendor Fix fix
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2026-33186

9.1 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

CWE-551 - Incorrect Behavior Order: Authorization Before Parsing and Canonicalization

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2026-33810

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L

CWE-1289 - Improper Validation of Unsafe Equivalence in Input

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src	—	Vendor Fix fix
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2026-34986

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-131 - Incorrect Calculation of Buffer Size

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

References

66 references

URL	Category
https://access.redhat.com/errata/RHSA-2026:19719	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2445356	external
https://bugzilla.redhat.com/show_bug.cgi?id=2449833	external
https://bugzilla.redhat.com/show_bug.cgi?id=2455470	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456333	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456335	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456336	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456338	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456339	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2026-25679	self
https://bugzilla.redhat.com/show_bug.cgi?id=2445356	external
https://www.cve.org/CVERecord?id=CVE-2026-25679	external
https://nvd.nist.gov/vuln/detail/CVE-2026-25679	external
https://go.dev/cl/752180	external
https://go.dev/issue/77578	external
https://groups.google.com/g/golang-announce/c/Edh…	external
https://pkg.go.dev/vuln/GO-2026-4601	external
https://access.redhat.com/security/cve/CVE-2026-32280	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456339	external
https://www.cve.org/CVERecord?id=CVE-2026-32280	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32280	external
https://go.dev/cl/758320	external
https://go.dev/issue/78282	external
https://groups.google.com/g/golang-announce/c/0uY…	external
https://pkg.go.dev/vuln/GO-2026-4947	external
https://access.redhat.com/security/cve/CVE-2026-32281	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456333	external
https://www.cve.org/CVERecord?id=CVE-2026-32281	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32281	external
https://go.dev/cl/758061	external
https://go.dev/issue/78281	external
https://pkg.go.dev/vuln/GO-2026-4946	external
https://access.redhat.com/security/cve/CVE-2026-32282	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456336	external
https://www.cve.org/CVERecord?id=CVE-2026-32282	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32282	external
https://go.dev/cl/763761	external
https://go.dev/issue/78293	external
https://pkg.go.dev/vuln/GO-2026-4864	external
https://access.redhat.com/security/cve/CVE-2026-32283	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456338	external
https://www.cve.org/CVERecord?id=CVE-2026-32283	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32283	external
https://go.dev/cl/763767	external
https://go.dev/issue/78334	external
https://pkg.go.dev/vuln/GO-2026-4870	external
https://access.redhat.com/security/cve/CVE-2026-33186	self
https://bugzilla.redhat.com/show_bug.cgi?id=2449833	external
https://www.cve.org/CVERecord?id=CVE-2026-33186	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33186	external
https://github.com/grpc/grpc-go/security/advisori…	external
https://access.redhat.com/security/cve/CVE-2026-33810	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456335	external
https://www.cve.org/CVERecord?id=CVE-2026-33810	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33810	external
https://go.dev/cl/763763	external
https://go.dev/issue/78332	external
https://pkg.go.dev/vuln/GO-2026-4866	external
https://access.redhat.com/security/cve/CVE-2026-34986	self
https://bugzilla.redhat.com/show_bug.cgi?id=2455470	external
https://www.cve.org/CVERecord?id=CVE-2026-34986	external
https://nvd.nist.gov/vuln/detail/CVE-2026-34986	external
https://github.com/go-jose/go-jose/security/advis…	external
https://pkg.go.dev/github.com/go-jose/go-jose/v4#…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for opentelemetry-collector is now available for Red Hat Enterprise Linux 10.0 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Collector with the supported components for a Red Hat build of OpenTelemetry\n\nSecurity Fix(es):\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\n* google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation (CVE-2026-33186)\n\n* github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object (CVE-2026-34986)\n\n* crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation (CVE-2026-32281)\n\n* crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application (CVE-2026-33810)\n\n* golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root (CVE-2026-32282)\n\n* crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages (CVE-2026-32283)\n\n* crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2026:19719",
        "url": "https://access.redhat.com/errata/RHSA-2026:19719"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2445356",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
      },
      {
        "category": "external",
        "summary": "2449833",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
      },
      {
        "category": "external",
        "summary": "2455470",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455470"
      },
      {
        "category": "external",
        "summary": "2456333",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
      },
      {
        "category": "external",
        "summary": "2456335",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456335"
      },
      {
        "category": "external",
        "summary": "2456336",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
      },
      {
        "category": "external",
        "summary": "2456338",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
      },
      {
        "category": "external",
        "summary": "2456339",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_19719.json"
      }
    ],
    "title": "Red Hat Security Advisory: opentelemetry-collector security update",
    "tracking": {
      "current_release_date": "2026-06-08T07:56:07+00:00",
      "generator": {
        "date": "2026-06-08T07:56:07+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.8.2"
        }
      },
      "id": "RHSA-2026:19719",
      "initial_release_date": "2026-05-20T16:45:20+00:00",
      "revision_history": [
        {
          "date": "2026-05-20T16:45:20+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2026-05-20T16:45:20+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-06-08T07:56:07+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
                  "product_id": "AppStream-10.0.Z.E2S",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux_eus:10.0"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "opentelemetry-collector-0:0.144.0-2.el10_0.src",
                "product": {
                  "name": "opentelemetry-collector-0:0.144.0-2.el10_0.src",
                  "product_id": "opentelemetry-collector-0:0.144.0-2.el10_0.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/opentelemetry-collector@0.144.0-2.el10_0?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
                "product": {
                  "name": "opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
                  "product_id": "opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/opentelemetry-collector@0.144.0-2.el10_0?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
                "product": {
                  "name": "opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
                  "product_id": "opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/opentelemetry-collector@0.144.0-2.el10_0?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
                "product": {
                  "name": "opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
                  "product_id": "opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/opentelemetry-collector@0.144.0-2.el10_0?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "opentelemetry-collector-0:0.144.0-2.el10_0.x86_64",
                "product": {
                  "name": "opentelemetry-collector-0:0.144.0-2.el10_0.x86_64",
                  "product_id": "opentelemetry-collector-0:0.144.0-2.el10_0.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/opentelemetry-collector@0.144.0-2.el10_0?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opentelemetry-collector-0:0.144.0-2.el10_0.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
          "product_id": "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64"
        },
        "product_reference": "opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
        "relates_to_product_reference": "AppStream-10.0.Z.E2S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
          "product_id": "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le"
        },
        "product_reference": "opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
        "relates_to_product_reference": "AppStream-10.0.Z.E2S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opentelemetry-collector-0:0.144.0-2.el10_0.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
          "product_id": "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x"
        },
        "product_reference": "opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
        "relates_to_product_reference": "AppStream-10.0.Z.E2S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opentelemetry-collector-0:0.144.0-2.el10_0.src as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
          "product_id": "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src"
        },
        "product_reference": "opentelemetry-collector-0:0.144.0-2.el10_0.src",
        "relates_to_product_reference": "AppStream-10.0.Z.E2S"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opentelemetry-collector-0:0.144.0-2.el10_0.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
          "product_id": "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
        },
        "product_reference": "opentelemetry-collector-0:0.144.0-2.el10_0.x86_64",
        "relates_to_product_reference": "AppStream-10.0.Z.E2S"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2026-25679",
      "cwe": {
        "id": "CWE-1286",
        "name": "Improper Validation of Syntactic Correctness of Input"
      },
      "discovery_date": "2026-03-06T22:02:11.567841+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2445356"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-25679"
        },
        {
          "category": "external",
          "summary": "RHBZ#2445356",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/752180",
          "url": "https://go.dev/cl/752180"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/77578",
          "url": "https://go.dev/issue/77578"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
          "url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4601",
          "url": "https://pkg.go.dev/vuln/GO-2026-4601"
        }
      ],
      "release_date": "2026-03-06T21:28:14.211000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-20T16:45:20+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19719"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
    },
    {
      "cve": "CVE-2026-32280",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2026-04-08T02:01:19.572351+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456339"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456339",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32280",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/758320",
          "url": "https://go.dev/cl/758320"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78282",
          "url": "https://go.dev/issue/78282"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4947",
          "url": "https://pkg.go.dev/vuln/GO-2026-4947"
        }
      ],
      "release_date": "2026-04-08T01:06:58.595000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-20T16:45:20+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19719"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building"
    },
    {
      "cve": "CVE-2026-32281",
      "cwe": {
        "id": "CWE-1050",
        "name": "Excessive Platform Resource Consumption within a Loop"
      },
      "discovery_date": "2026-04-08T02:01:00.930989+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456333"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Go\u0027s `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This flaw occurs during the validation of otherwise trusted certificate chains that contain a large number of policy mappings, leading to excessive resource consumption. Exploitation requires an attacker to present a specially crafted, yet trusted, certificate chain which would require the attacker has already compromised a trusted certificate root. Red Hat continuously monitors certificate authorities and curates the set which is trusted by default for Red Hat products.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32281"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456333",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32281",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32281"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/758061",
          "url": "https://go.dev/cl/758061"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78281",
          "url": "https://go.dev/issue/78281"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4946",
          "url": "https://pkg.go.dev/vuln/GO-2026-4946"
        }
      ],
      "release_date": "2026-04-08T01:06:58.354000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-20T16:45:20+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19719"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation"
    },
    {
      "cve": "CVE-2026-32282",
      "cwe": {
        "id": "CWE-367",
        "name": "Time-of-check Time-of-use (TOCTOU) Race Condition"
      },
      "discovery_date": "2026-04-08T02:01:12.683211+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456336"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs access to the system and the required permissions to create a symbolic link. Additionally, the attacker must swap the target file with a symbolic link in the exact window after the `Root.Chmod` function checks its target but before acting. Due to these conditions, this flaw has been rated with a moderate severity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456336",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32282",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/763761",
          "url": "https://go.dev/cl/763761"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78293",
          "url": "https://go.dev/issue/78293"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4864",
          "url": "https://pkg.go.dev/vuln/GO-2026-4864"
        }
      ],
      "release_date": "2026-04-08T01:06:55.953000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-20T16:45:20+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19719"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root"
    },
    {
      "cve": "CVE-2026-32283",
      "cwe": {
        "id": "CWE-764",
        "name": "Multiple Locks of a Critical Resource"
      },
      "discovery_date": "2026-04-08T02:01:16.213799+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456338"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the `crypto/tls` package within the Go (golang) standard library, specifically affecting TLS 1.3 connections. A remote attacker can exploit this vulnerability by sending multiple key update messages in a single record after the handshake. This can cause the connection to deadlock, leading to uncontrolled consumption of resources and ultimately a denial of service (DoS).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32283"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456338",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32283",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32283"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/763767",
          "url": "https://go.dev/cl/763767"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78334",
          "url": "https://go.dev/issue/78334"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4870",
          "url": "https://pkg.go.dev/vuln/GO-2026-4870"
        }
      ],
      "release_date": "2026-04-08T01:06:57.670000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-20T16:45:20+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19719"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages"
    },
    {
      "cve": "CVE-2026-33186",
      "cwe": {
        "id": "CWE-551",
        "name": "Incorrect Behavior Order: Authorization Before Parsing and Canonicalization"
      },
      "discovery_date": "2026-03-20T23:02:27.802640+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2449833"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33186"
        },
        {
          "category": "external",
          "summary": "RHBZ#2449833",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33186",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33186"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186"
        },
        {
          "category": "external",
          "summary": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3",
          "url": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3"
        }
      ],
      "release_date": "2026-03-20T22:23:32.147000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-20T16:45:20+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19719"
        },
        {
          "category": "workaround",
          "details": "To mitigate this issue, implement infrastructure-level normalization to ensure all incoming HTTP/2 `:path` headers are properly formatted with a leading slash before reaching the gRPC-Go server. This can be achieved by configuring a reverse proxy or API gateway to validate and normalize the `:path` header. Ensure that any such intermediary is properly configured and restarted to apply the changes, which may temporarily impact service availability.",
          "product_ids": [
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 9.1,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation"
    },
    {
      "cve": "CVE-2026-33810",
      "cwe": {
        "id": "CWE-1289",
        "name": "Improper Validation of Unsafe Equivalence in Input"
      },
      "discovery_date": "2026-04-08T02:01:09.100830+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456335"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456335",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456335"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33810",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/763763",
          "url": "https://go.dev/cl/763763"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78332",
          "url": "https://go.dev/issue/78332"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4866",
          "url": "https://pkg.go.dev/vuln/GO-2026-4866"
        }
      ],
      "release_date": "2026-04-08T01:06:56.546000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-20T16:45:20+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19719"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application"
    },
    {
      "cve": "CVE-2026-34986",
      "cwe": {
        "id": "CWE-131",
        "name": "Incorrect Calculation of Buffer Size"
      },
      "discovery_date": "2026-04-06T17:01:34.639203+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2455470"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src",
          "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-34986"
        },
        {
          "category": "external",
          "summary": "RHBZ#2455470",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455470"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-34986",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-34986"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986"
        },
        {
          "category": "external",
          "summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8",
          "url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants",
          "url": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants"
        }
      ],
      "release_date": "2026-04-06T16:22:45.353000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-20T16:45:20+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19719"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.aarch64",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.ppc64le",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.s390x",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.src",
            "AppStream-10.0.Z.E2S:opentelemetry-collector-0:0.144.0-2.el10_0.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object"
    }
  ]
}

RHSA-2026:19720

Vulnerability from csaf_redhat - Published: 2026-05-20 17:01 - Updated: 2026-06-08 07:56

Summary

Red Hat Security Advisory: opentelemetry-collector security update

Severity

Important

Notes

Topic: An update for opentelemetry-collector is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

CVE-2026-25679

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1286 - Improper Validation of Syntactic Correctness of Input

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2026-32280

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2026-32281

5.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1050 - Excessive Platform Resource Consumption within a Loop

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2026-32282

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

CWE-367 - Time-of-check Time-of-use (TOCTOU) Race Condition

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2026-32283

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-764 - Multiple Locks of a Critical Resource

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2026-33186

9.1 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

CWE-551 - Incorrect Behavior Order: Authorization Before Parsing and Canonicalization

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2026-33810

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L

CWE-1289 - Improper Validation of Unsafe Equivalence in Input

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2026-34986

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-131 - Incorrect Calculation of Buffer Size

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

References

66 references

URL	Category
https://access.redhat.com/errata/RHSA-2026:19720	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2445356	external
https://bugzilla.redhat.com/show_bug.cgi?id=2449833	external
https://bugzilla.redhat.com/show_bug.cgi?id=2455470	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456333	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456335	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456336	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456338	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456339	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2026-25679	self
https://bugzilla.redhat.com/show_bug.cgi?id=2445356	external
https://www.cve.org/CVERecord?id=CVE-2026-25679	external
https://nvd.nist.gov/vuln/detail/CVE-2026-25679	external
https://go.dev/cl/752180	external
https://go.dev/issue/77578	external
https://groups.google.com/g/golang-announce/c/Edh…	external
https://pkg.go.dev/vuln/GO-2026-4601	external
https://access.redhat.com/security/cve/CVE-2026-32280	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456339	external
https://www.cve.org/CVERecord?id=CVE-2026-32280	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32280	external
https://go.dev/cl/758320	external
https://go.dev/issue/78282	external
https://groups.google.com/g/golang-announce/c/0uY…	external
https://pkg.go.dev/vuln/GO-2026-4947	external
https://access.redhat.com/security/cve/CVE-2026-32281	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456333	external
https://www.cve.org/CVERecord?id=CVE-2026-32281	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32281	external
https://go.dev/cl/758061	external
https://go.dev/issue/78281	external
https://pkg.go.dev/vuln/GO-2026-4946	external
https://access.redhat.com/security/cve/CVE-2026-32282	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456336	external
https://www.cve.org/CVERecord?id=CVE-2026-32282	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32282	external
https://go.dev/cl/763761	external
https://go.dev/issue/78293	external
https://pkg.go.dev/vuln/GO-2026-4864	external
https://access.redhat.com/security/cve/CVE-2026-32283	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456338	external
https://www.cve.org/CVERecord?id=CVE-2026-32283	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32283	external
https://go.dev/cl/763767	external
https://go.dev/issue/78334	external
https://pkg.go.dev/vuln/GO-2026-4870	external
https://access.redhat.com/security/cve/CVE-2026-33186	self
https://bugzilla.redhat.com/show_bug.cgi?id=2449833	external
https://www.cve.org/CVERecord?id=CVE-2026-33186	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33186	external
https://github.com/grpc/grpc-go/security/advisori…	external
https://access.redhat.com/security/cve/CVE-2026-33810	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456335	external
https://www.cve.org/CVERecord?id=CVE-2026-33810	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33810	external
https://go.dev/cl/763763	external
https://go.dev/issue/78332	external
https://pkg.go.dev/vuln/GO-2026-4866	external
https://access.redhat.com/security/cve/CVE-2026-34986	self
https://bugzilla.redhat.com/show_bug.cgi?id=2455470	external
https://www.cve.org/CVERecord?id=CVE-2026-34986	external
https://nvd.nist.gov/vuln/detail/CVE-2026-34986	external
https://github.com/go-jose/go-jose/security/advis…	external
https://pkg.go.dev/github.com/go-jose/go-jose/v4#…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for opentelemetry-collector is now available for Red Hat Enterprise Linux 9.6 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Collector with the supported components for a Red Hat build of OpenTelemetry\n\nSecurity Fix(es):\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\n* google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation (CVE-2026-33186)\n\n* github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object (CVE-2026-34986)\n\n* crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation (CVE-2026-32281)\n\n* crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application (CVE-2026-33810)\n\n* golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root (CVE-2026-32282)\n\n* crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages (CVE-2026-32283)\n\n* crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2026:19720",
        "url": "https://access.redhat.com/errata/RHSA-2026:19720"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2445356",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
      },
      {
        "category": "external",
        "summary": "2449833",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
      },
      {
        "category": "external",
        "summary": "2455470",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455470"
      },
      {
        "category": "external",
        "summary": "2456333",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
      },
      {
        "category": "external",
        "summary": "2456335",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456335"
      },
      {
        "category": "external",
        "summary": "2456336",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
      },
      {
        "category": "external",
        "summary": "2456338",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
      },
      {
        "category": "external",
        "summary": "2456339",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_19720.json"
      }
    ],
    "title": "Red Hat Security Advisory: opentelemetry-collector security update",
    "tracking": {
      "current_release_date": "2026-06-08T07:56:08+00:00",
      "generator": {
        "date": "2026-06-08T07:56:08+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.8.2"
        }
      },
      "id": "RHSA-2026:19720",
      "initial_release_date": "2026-05-20T17:01:05+00:00",
      "revision_history": [
        {
          "date": "2026-05-20T17:01:05+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2026-05-20T17:01:05+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-06-08T07:56:08+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream EUS (v.9.6)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream EUS (v.9.6)",
                  "product_id": "AppStream-9.6.0.Z.EUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_eus:9.6::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "opentelemetry-collector-0:0.144.0-2.el9_6.src",
                "product": {
                  "name": "opentelemetry-collector-0:0.144.0-2.el9_6.src",
                  "product_id": "opentelemetry-collector-0:0.144.0-2.el9_6.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/opentelemetry-collector@0.144.0-2.el9_6?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
                "product": {
                  "name": "opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
                  "product_id": "opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/opentelemetry-collector@0.144.0-2.el9_6?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
                "product": {
                  "name": "opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
                  "product_id": "opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/opentelemetry-collector@0.144.0-2.el9_6?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "opentelemetry-collector-0:0.144.0-2.el9_6.x86_64",
                "product": {
                  "name": "opentelemetry-collector-0:0.144.0-2.el9_6.x86_64",
                  "product_id": "opentelemetry-collector-0:0.144.0-2.el9_6.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/opentelemetry-collector@0.144.0-2.el9_6?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
                "product": {
                  "name": "opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
                  "product_id": "opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/opentelemetry-collector@0.144.0-2.el9_6?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opentelemetry-collector-0:0.144.0-2.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64"
        },
        "product_reference": "opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le"
        },
        "product_reference": "opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opentelemetry-collector-0:0.144.0-2.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x"
        },
        "product_reference": "opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opentelemetry-collector-0:0.144.0-2.el9_6.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src"
        },
        "product_reference": "opentelemetry-collector-0:0.144.0-2.el9_6.src",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opentelemetry-collector-0:0.144.0-2.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
          "product_id": "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
        },
        "product_reference": "opentelemetry-collector-0:0.144.0-2.el9_6.x86_64",
        "relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2026-25679",
      "cwe": {
        "id": "CWE-1286",
        "name": "Improper Validation of Syntactic Correctness of Input"
      },
      "discovery_date": "2026-03-06T22:02:11.567841+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2445356"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-25679"
        },
        {
          "category": "external",
          "summary": "RHBZ#2445356",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/752180",
          "url": "https://go.dev/cl/752180"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/77578",
          "url": "https://go.dev/issue/77578"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
          "url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4601",
          "url": "https://pkg.go.dev/vuln/GO-2026-4601"
        }
      ],
      "release_date": "2026-03-06T21:28:14.211000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-20T17:01:05+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19720"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
    },
    {
      "cve": "CVE-2026-32280",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2026-04-08T02:01:19.572351+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456339"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456339",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32280",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/758320",
          "url": "https://go.dev/cl/758320"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78282",
          "url": "https://go.dev/issue/78282"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4947",
          "url": "https://pkg.go.dev/vuln/GO-2026-4947"
        }
      ],
      "release_date": "2026-04-08T01:06:58.595000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-20T17:01:05+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19720"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building"
    },
    {
      "cve": "CVE-2026-32281",
      "cwe": {
        "id": "CWE-1050",
        "name": "Excessive Platform Resource Consumption within a Loop"
      },
      "discovery_date": "2026-04-08T02:01:00.930989+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456333"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Go\u0027s `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This flaw occurs during the validation of otherwise trusted certificate chains that contain a large number of policy mappings, leading to excessive resource consumption. Exploitation requires an attacker to present a specially crafted, yet trusted, certificate chain which would require the attacker has already compromised a trusted certificate root. Red Hat continuously monitors certificate authorities and curates the set which is trusted by default for Red Hat products.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32281"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456333",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32281",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32281"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/758061",
          "url": "https://go.dev/cl/758061"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78281",
          "url": "https://go.dev/issue/78281"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4946",
          "url": "https://pkg.go.dev/vuln/GO-2026-4946"
        }
      ],
      "release_date": "2026-04-08T01:06:58.354000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-20T17:01:05+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19720"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation"
    },
    {
      "cve": "CVE-2026-32282",
      "cwe": {
        "id": "CWE-367",
        "name": "Time-of-check Time-of-use (TOCTOU) Race Condition"
      },
      "discovery_date": "2026-04-08T02:01:12.683211+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456336"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs access to the system and the required permissions to create a symbolic link. Additionally, the attacker must swap the target file with a symbolic link in the exact window after the `Root.Chmod` function checks its target but before acting. Due to these conditions, this flaw has been rated with a moderate severity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456336",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32282",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/763761",
          "url": "https://go.dev/cl/763761"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78293",
          "url": "https://go.dev/issue/78293"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4864",
          "url": "https://pkg.go.dev/vuln/GO-2026-4864"
        }
      ],
      "release_date": "2026-04-08T01:06:55.953000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-20T17:01:05+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19720"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root"
    },
    {
      "cve": "CVE-2026-32283",
      "cwe": {
        "id": "CWE-764",
        "name": "Multiple Locks of a Critical Resource"
      },
      "discovery_date": "2026-04-08T02:01:16.213799+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456338"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the `crypto/tls` package within the Go (golang) standard library, specifically affecting TLS 1.3 connections. A remote attacker can exploit this vulnerability by sending multiple key update messages in a single record after the handshake. This can cause the connection to deadlock, leading to uncontrolled consumption of resources and ultimately a denial of service (DoS).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32283"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456338",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32283",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32283"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/763767",
          "url": "https://go.dev/cl/763767"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78334",
          "url": "https://go.dev/issue/78334"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4870",
          "url": "https://pkg.go.dev/vuln/GO-2026-4870"
        }
      ],
      "release_date": "2026-04-08T01:06:57.670000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-20T17:01:05+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19720"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages"
    },
    {
      "cve": "CVE-2026-33186",
      "cwe": {
        "id": "CWE-551",
        "name": "Incorrect Behavior Order: Authorization Before Parsing and Canonicalization"
      },
      "discovery_date": "2026-03-20T23:02:27.802640+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2449833"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33186"
        },
        {
          "category": "external",
          "summary": "RHBZ#2449833",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33186",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33186"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186"
        },
        {
          "category": "external",
          "summary": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3",
          "url": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3"
        }
      ],
      "release_date": "2026-03-20T22:23:32.147000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-20T17:01:05+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19720"
        },
        {
          "category": "workaround",
          "details": "To mitigate this issue, implement infrastructure-level normalization to ensure all incoming HTTP/2 `:path` headers are properly formatted with a leading slash before reaching the gRPC-Go server. This can be achieved by configuring a reverse proxy or API gateway to validate and normalize the `:path` header. Ensure that any such intermediary is properly configured and restarted to apply the changes, which may temporarily impact service availability.",
          "product_ids": [
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 9.1,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation"
    },
    {
      "cve": "CVE-2026-33810",
      "cwe": {
        "id": "CWE-1289",
        "name": "Improper Validation of Unsafe Equivalence in Input"
      },
      "discovery_date": "2026-04-08T02:01:09.100830+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456335"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456335",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456335"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33810",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/763763",
          "url": "https://go.dev/cl/763763"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78332",
          "url": "https://go.dev/issue/78332"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4866",
          "url": "https://pkg.go.dev/vuln/GO-2026-4866"
        }
      ],
      "release_date": "2026-04-08T01:06:56.546000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-20T17:01:05+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19720"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application"
    },
    {
      "cve": "CVE-2026-34986",
      "cwe": {
        "id": "CWE-131",
        "name": "Incorrect Calculation of Buffer Size"
      },
      "discovery_date": "2026-04-06T17:01:34.639203+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2455470"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src",
          "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-34986"
        },
        {
          "category": "external",
          "summary": "RHBZ#2455470",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455470"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-34986",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-34986"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986"
        },
        {
          "category": "external",
          "summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8",
          "url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants",
          "url": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants"
        }
      ],
      "release_date": "2026-04-06T16:22:45.353000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-20T17:01:05+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19720"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.aarch64",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.ppc64le",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.s390x",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.src",
            "AppStream-9.6.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_6.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object"
    }
  ]
}

RHSA-2026:19721

Vulnerability from csaf_redhat - Published: 2026-05-20 16:56 - Updated: 2026-06-08 07:56

Summary

Red Hat Security Advisory: opentelemetry-collector security update

Severity

Important

Notes

Topic: An update for opentelemetry-collector is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

CVE-2026-25679

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1286 - Improper Validation of Syntactic Correctness of Input

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2026-32280

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2026-32281

5.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1050 - Excessive Platform Resource Consumption within a Loop

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2026-32282

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

CWE-367 - Time-of-check Time-of-use (TOCTOU) Race Condition

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Moderate

CVE-2026-32283

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-764 - Multiple Locks of a Critical Resource

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2026-33186

9.1 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

CWE-551 - Incorrect Behavior Order: Authorization Before Parsing and Canonicalization

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

CVE-2026-33810

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L

CWE-1289 - Improper Validation of Unsafe Equivalence in Input

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src	—	Vendor Fix fix
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64	—	Vendor Fix fix

Threats

Impact Important

CVE-2026-34986

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-131 - Incorrect Calculation of Buffer Size

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src	—	Vendor Fix fix Workaround
Unresolved product id: AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64	—	Vendor Fix fix Workaround

Threats

Impact Important

References

66 references

URL	Category
https://access.redhat.com/errata/RHSA-2026:19721	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2445356	external
https://bugzilla.redhat.com/show_bug.cgi?id=2449833	external
https://bugzilla.redhat.com/show_bug.cgi?id=2455470	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456333	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456335	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456336	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456338	external
https://bugzilla.redhat.com/show_bug.cgi?id=2456339	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2026-25679	self
https://bugzilla.redhat.com/show_bug.cgi?id=2445356	external
https://www.cve.org/CVERecord?id=CVE-2026-25679	external
https://nvd.nist.gov/vuln/detail/CVE-2026-25679	external
https://go.dev/cl/752180	external
https://go.dev/issue/77578	external
https://groups.google.com/g/golang-announce/c/Edh…	external
https://pkg.go.dev/vuln/GO-2026-4601	external
https://access.redhat.com/security/cve/CVE-2026-32280	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456339	external
https://www.cve.org/CVERecord?id=CVE-2026-32280	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32280	external
https://go.dev/cl/758320	external
https://go.dev/issue/78282	external
https://groups.google.com/g/golang-announce/c/0uY…	external
https://pkg.go.dev/vuln/GO-2026-4947	external
https://access.redhat.com/security/cve/CVE-2026-32281	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456333	external
https://www.cve.org/CVERecord?id=CVE-2026-32281	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32281	external
https://go.dev/cl/758061	external
https://go.dev/issue/78281	external
https://pkg.go.dev/vuln/GO-2026-4946	external
https://access.redhat.com/security/cve/CVE-2026-32282	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456336	external
https://www.cve.org/CVERecord?id=CVE-2026-32282	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32282	external
https://go.dev/cl/763761	external
https://go.dev/issue/78293	external
https://pkg.go.dev/vuln/GO-2026-4864	external
https://access.redhat.com/security/cve/CVE-2026-32283	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456338	external
https://www.cve.org/CVERecord?id=CVE-2026-32283	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32283	external
https://go.dev/cl/763767	external
https://go.dev/issue/78334	external
https://pkg.go.dev/vuln/GO-2026-4870	external
https://access.redhat.com/security/cve/CVE-2026-33186	self
https://bugzilla.redhat.com/show_bug.cgi?id=2449833	external
https://www.cve.org/CVERecord?id=CVE-2026-33186	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33186	external
https://github.com/grpc/grpc-go/security/advisori…	external
https://access.redhat.com/security/cve/CVE-2026-33810	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456335	external
https://www.cve.org/CVERecord?id=CVE-2026-33810	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33810	external
https://go.dev/cl/763763	external
https://go.dev/issue/78332	external
https://pkg.go.dev/vuln/GO-2026-4866	external
https://access.redhat.com/security/cve/CVE-2026-34986	self
https://bugzilla.redhat.com/show_bug.cgi?id=2455470	external
https://www.cve.org/CVERecord?id=CVE-2026-34986	external
https://nvd.nist.gov/vuln/detail/CVE-2026-34986	external
https://github.com/go-jose/go-jose/security/advis…	external
https://pkg.go.dev/github.com/go-jose/go-jose/v4#…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update for opentelemetry-collector is now available for Red Hat Enterprise Linux 9.4 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Collector with the supported components for a Red Hat build of OpenTelemetry\n\nSecurity Fix(es):\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\n* google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation (CVE-2026-33186)\n\n* github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object (CVE-2026-34986)\n\n* crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation (CVE-2026-32281)\n\n* crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application (CVE-2026-33810)\n\n* golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root (CVE-2026-32282)\n\n* crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages (CVE-2026-32283)\n\n* crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2026:19721",
        "url": "https://access.redhat.com/errata/RHSA-2026:19721"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "2445356",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
      },
      {
        "category": "external",
        "summary": "2449833",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
      },
      {
        "category": "external",
        "summary": "2455470",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455470"
      },
      {
        "category": "external",
        "summary": "2456333",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
      },
      {
        "category": "external",
        "summary": "2456335",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456335"
      },
      {
        "category": "external",
        "summary": "2456336",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
      },
      {
        "category": "external",
        "summary": "2456338",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
      },
      {
        "category": "external",
        "summary": "2456339",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_19721.json"
      }
    ],
    "title": "Red Hat Security Advisory: opentelemetry-collector security update",
    "tracking": {
      "current_release_date": "2026-06-08T07:56:08+00:00",
      "generator": {
        "date": "2026-06-08T07:56:08+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.8.2"
        }
      },
      "id": "RHSA-2026:19721",
      "initial_release_date": "2026-05-20T16:56:10+00:00",
      "revision_history": [
        {
          "date": "2026-05-20T16:56:10+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2026-05-20T16:56:10+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-06-08T07:56:08+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
                "product": {
                  "name": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
                  "product_id": "AppStream-9.4.0.Z.EUS",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_eus:9.4::appstream"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "opentelemetry-collector-0:0.144.0-2.el9_4.src",
                "product": {
                  "name": "opentelemetry-collector-0:0.144.0-2.el9_4.src",
                  "product_id": "opentelemetry-collector-0:0.144.0-2.el9_4.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/opentelemetry-collector@0.144.0-2.el9_4?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
                "product": {
                  "name": "opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
                  "product_id": "opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/opentelemetry-collector@0.144.0-2.el9_4?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
                "product": {
                  "name": "opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
                  "product_id": "opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/opentelemetry-collector@0.144.0-2.el9_4?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "opentelemetry-collector-0:0.144.0-2.el9_4.x86_64",
                "product": {
                  "name": "opentelemetry-collector-0:0.144.0-2.el9_4.x86_64",
                  "product_id": "opentelemetry-collector-0:0.144.0-2.el9_4.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/opentelemetry-collector@0.144.0-2.el9_4?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
                "product": {
                  "name": "opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
                  "product_id": "opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/opentelemetry-collector@0.144.0-2.el9_4?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opentelemetry-collector-0:0.144.0-2.el9_4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64"
        },
        "product_reference": "opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le"
        },
        "product_reference": "opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opentelemetry-collector-0:0.144.0-2.el9_4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x"
        },
        "product_reference": "opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opentelemetry-collector-0:0.144.0-2.el9_4.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src"
        },
        "product_reference": "opentelemetry-collector-0:0.144.0-2.el9_4.src",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "opentelemetry-collector-0:0.144.0-2.el9_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
          "product_id": "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
        },
        "product_reference": "opentelemetry-collector-0:0.144.0-2.el9_4.x86_64",
        "relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2026-25679",
      "cwe": {
        "id": "CWE-1286",
        "name": "Improper Validation of Syntactic Correctness of Input"
      },
      "discovery_date": "2026-03-06T22:02:11.567841+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2445356"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-25679"
        },
        {
          "category": "external",
          "summary": "RHBZ#2445356",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/752180",
          "url": "https://go.dev/cl/752180"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/77578",
          "url": "https://go.dev/issue/77578"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
          "url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4601",
          "url": "https://pkg.go.dev/vuln/GO-2026-4601"
        }
      ],
      "release_date": "2026-03-06T21:28:14.211000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-20T16:56:10+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19721"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
    },
    {
      "cve": "CVE-2026-32280",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2026-04-08T02:01:19.572351+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456339"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456339",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32280",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/758320",
          "url": "https://go.dev/cl/758320"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78282",
          "url": "https://go.dev/issue/78282"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4947",
          "url": "https://pkg.go.dev/vuln/GO-2026-4947"
        }
      ],
      "release_date": "2026-04-08T01:06:58.595000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-20T16:56:10+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19721"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building"
    },
    {
      "cve": "CVE-2026-32281",
      "cwe": {
        "id": "CWE-1050",
        "name": "Excessive Platform Resource Consumption within a Loop"
      },
      "discovery_date": "2026-04-08T02:01:00.930989+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456333"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Go\u0027s `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This flaw occurs during the validation of otherwise trusted certificate chains that contain a large number of policy mappings, leading to excessive resource consumption. Exploitation requires an attacker to present a specially crafted, yet trusted, certificate chain which would require the attacker has already compromised a trusted certificate root. Red Hat continuously monitors certificate authorities and curates the set which is trusted by default for Red Hat products.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32281"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456333",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32281",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32281"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/758061",
          "url": "https://go.dev/cl/758061"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78281",
          "url": "https://go.dev/issue/78281"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4946",
          "url": "https://pkg.go.dev/vuln/GO-2026-4946"
        }
      ],
      "release_date": "2026-04-08T01:06:58.354000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-20T16:56:10+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19721"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation"
    },
    {
      "cve": "CVE-2026-32282",
      "cwe": {
        "id": "CWE-367",
        "name": "Time-of-check Time-of-use (TOCTOU) Race Condition"
      },
      "discovery_date": "2026-04-08T02:01:12.683211+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456336"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs access to the system and the required permissions to create a symbolic link. Additionally, the attacker must swap the target file with a symbolic link in the exact window after the `Root.Chmod` function checks its target but before acting. Due to these conditions, this flaw has been rated with a moderate severity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456336",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32282",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/763761",
          "url": "https://go.dev/cl/763761"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78293",
          "url": "https://go.dev/issue/78293"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4864",
          "url": "https://pkg.go.dev/vuln/GO-2026-4864"
        }
      ],
      "release_date": "2026-04-08T01:06:55.953000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-20T16:56:10+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19721"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root"
    },
    {
      "cve": "CVE-2026-32283",
      "cwe": {
        "id": "CWE-764",
        "name": "Multiple Locks of a Critical Resource"
      },
      "discovery_date": "2026-04-08T02:01:16.213799+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456338"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the `crypto/tls` package within the Go (golang) standard library, specifically affecting TLS 1.3 connections. A remote attacker can exploit this vulnerability by sending multiple key update messages in a single record after the handshake. This can cause the connection to deadlock, leading to uncontrolled consumption of resources and ultimately a denial of service (DoS).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32283"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456338",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32283",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32283"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/763767",
          "url": "https://go.dev/cl/763767"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78334",
          "url": "https://go.dev/issue/78334"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4870",
          "url": "https://pkg.go.dev/vuln/GO-2026-4870"
        }
      ],
      "release_date": "2026-04-08T01:06:57.670000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-20T16:56:10+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19721"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages"
    },
    {
      "cve": "CVE-2026-33186",
      "cwe": {
        "id": "CWE-551",
        "name": "Incorrect Behavior Order: Authorization Before Parsing and Canonicalization"
      },
      "discovery_date": "2026-03-20T23:02:27.802640+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2449833"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33186"
        },
        {
          "category": "external",
          "summary": "RHBZ#2449833",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33186",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33186"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186"
        },
        {
          "category": "external",
          "summary": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3",
          "url": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3"
        }
      ],
      "release_date": "2026-03-20T22:23:32.147000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-20T16:56:10+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19721"
        },
        {
          "category": "workaround",
          "details": "To mitigate this issue, implement infrastructure-level normalization to ensure all incoming HTTP/2 `:path` headers are properly formatted with a leading slash before reaching the gRPC-Go server. This can be achieved by configuring a reverse proxy or API gateway to validate and normalize the `:path` header. Ensure that any such intermediary is properly configured and restarted to apply the changes, which may temporarily impact service availability.",
          "product_ids": [
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 9.1,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation"
    },
    {
      "cve": "CVE-2026-33810",
      "cwe": {
        "id": "CWE-1289",
        "name": "Improper Validation of Unsafe Equivalence in Input"
      },
      "discovery_date": "2026-04-08T02:01:09.100830+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456335"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456335",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456335"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33810",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/763763",
          "url": "https://go.dev/cl/763763"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78332",
          "url": "https://go.dev/issue/78332"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4866",
          "url": "https://pkg.go.dev/vuln/GO-2026-4866"
        }
      ],
      "release_date": "2026-04-08T01:06:56.546000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-20T16:56:10+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19721"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application"
    },
    {
      "cve": "CVE-2026-34986",
      "cwe": {
        "id": "CWE-131",
        "name": "Incorrect Calculation of Buffer Size"
      },
      "discovery_date": "2026-04-06T17:01:34.639203+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2455470"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src",
          "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-34986"
        },
        {
          "category": "external",
          "summary": "RHBZ#2455470",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455470"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-34986",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-34986"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986"
        },
        {
          "category": "external",
          "summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8",
          "url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants",
          "url": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants"
        }
      ],
      "release_date": "2026-04-06T16:22:45.353000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-20T16:56:10+00:00",
          "details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:19721"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.aarch64",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.ppc64le",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.s390x",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.src",
            "AppStream-9.4.0.Z.EUS:opentelemetry-collector-0:0.144.0-2.el9_4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object"
    }
  ]
}

RHSA-2026:21769

Vulnerability from csaf_redhat - Published: 2026-05-28 20:39 - Updated: 2026-06-08 07:56

Summary

Red Hat Security Advisory: Multicluster Global Hub 1.5.4 security update

Severity

Important

Notes

Topic: Multicluster Global Hub v1.5.4 general availability release images, which provide security fixes, bug fixes, and updated container images. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the References section.

Details: Red Hat multicluster global hub is a set of components that enable you to import one or more hub clusters and manage them from a single hub cluster.

CVE-2026-4427

No description is available for this CVE.

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix

Known not affected 17 products

Product	Identifier	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64		—

CVE-2026-21728

A flaw was found in Tempo. A remote attacker can exploit this vulnerability by sending large queries to the Tempo service. This can lead to excessive memory allocations, potentially causing a Denial of Service (DoS) by impacting the availability of the service.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix

Known not affected 17 products

Product	Identifier	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64		—

Threats

Impact Important

CVE-2026-25679

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1286 - Improper Validation of Syntactic Correctness of Input

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x	—	Vendor Fix fix Workaround

Known not affected 17 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64	—	Workaround

Threats

Impact Important

CVE-2026-27137

A certificate validation flaw has been discovered in the golang crypto/x509 module. When verifying a certificate chain which contains a certificate containing multiple email address constraints which share common local portions but different domain portions, these constraints will not be properly applied, and only the last constraint will be considered.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-295 - Improper Certificate Validation

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x	—	Vendor Fix fix Workaround

Known not affected 17 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64	—	Workaround

Threats

Impact Important

CVE-2026-27889

A flaw was found in NATS-Server, a high-performance messaging system. A remote attacker can exploit this vulnerability before authentication by sending a specially crafted WebSockets frame. This missing sanity check can trigger a server panic, leading to a Denial of Service (DoS) for affected deployments that use WebSockets and expose the network port to untrusted endpoints.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1286 - Improper Validation of Syntactic Correctness of Input

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix Workaround

Known not affected 17 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64	—	Workaround

Threats

Impact Important

CVE-2026-29785

A flaw was found in NATS-Server. A remote attacker can exploit this vulnerability by connecting to a NATS-Server instance where the 'leafnode' configuration is enabled and compression is active. This pre-authentication flaw allows the attacker to trigger a server crash, resulting in a Denial of Service (DoS) for the affected system.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-409 - Improper Handling of Highly Compressed Data (Data Amplification)

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix Workaround

Known not affected 17 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64	—	Workaround

Threats

Impact Important

CVE-2026-32280

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x	—	Vendor Fix fix

Known not affected 17 products

Product	Identifier	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64		—

Threats

Impact Important

CVE-2026-32281

5.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1050 - Excessive Platform Resource Consumption within a Loop

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix Workaround

Known not affected 17 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64	—	Workaround

Threats

Impact Moderate

CVE-2026-32282

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

CWE-367 - Time-of-check Time-of-use (TOCTOU) Race Condition

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix Workaround

Known not affected 17 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64	—	Workaround

Threats

Impact Moderate

CVE-2026-32283

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-764 - Multiple Locks of a Critical Resource

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x	—	Vendor Fix fix

Known not affected 17 products

Product	Identifier	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64		—

Threats

Impact Important

CVE-2026-32285

A flaw was found in github.com/buger/jsonparser. The Delete function, when processing malformed JSON input, fails to properly validate offsets. This vulnerability can lead to a negative slice index and a runtime panic, allowing a remote attacker to cause a denial of service (DoS) by providing specially crafted JSON data.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1285 - Improper Validation of Specified Index, Position, or Offset in Input

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix Workaround

Known not affected 17 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64	—	Workaround

Threats

Impact Important

CVE-2026-32286

A flaw was found in the DataRow.Decode function within the github.com/jackc/pgproto3/v2 component. A malicious or compromised PostgreSQL server can exploit this by sending a DataRow message containing a negative field length. This improper validation of field lengths leads to a "slice bounds out of range panic", resulting in a Denial of Service (DoS) for the affected application.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1285 - Improper Validation of Specified Index, Position, or Offset in Input

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix Workaround

Known not affected 17 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64	—	Workaround

Threats

Impact Important

CVE-2026-33186

9.1 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

CWE-551 - Incorrect Behavior Order: Authorization Before Parsing and Canonicalization

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64	—	Vendor Fix fix Workaround

Known not affected 5 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x	—	Workaround

Threats

Impact Important

CVE-2026-33215

A flaw was found in NATS-Server. A remote attacker could exploit this vulnerability by manipulating MQTT (Message Queuing Telemetry Transport) Client IDs. This malfeasance allows for the hijacking of client sessions and messages. This could lead to unauthorized access to sensitive information or disruption of service.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L

CWE-290 - Authentication Bypass by Spoofing

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix

Known not affected 17 products

Product	Identifier	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64		—

Threats

Impact Moderate

CVE-2026-33216

A flaw was found in NATS-Server, a high-performance server for the NATS.io messaging system. For MQTT deployments utilizing usercodes and passwords, the MQTT passwords were mistakenly categorized as non-authenticating identity statements (JSON Web Tokens - JWT). This misclassification leads to the exposure of these passwords through monitoring endpoints, enabling an attacker with access to these endpoints to gain sensitive information.

8.6 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

CWE-213 - Exposure of Sensitive Information Due to Incompatible Policies

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix Workaround

Known not affected 17 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64	—	Workaround

Threats

Impact Important

CVE-2026-33217

A flaw was found in NATS-Server. When Access Control Lists (ACLs) were configured for message subjects, these controls were not correctly applied within the `$MQTT.>` namespace. This oversight allows MQTT clients to bypass the intended ACL checks, potentially granting unauthorized access to sensitive message subjects. This vulnerability could lead to information disclosure or unauthorized message manipulation.

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

CWE-425 - Direct Request ('Forced Browsing')

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix Workaround

Known not affected 17 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64	—	Workaround

Threats

Impact Important

CVE-2026-33218

A flaw was found in NATS-Server, a high-performance messaging system. A remote attacker, by connecting to the leafnode port and sending a specially crafted malformed message before authentication, can cause the nats-server to crash. This vulnerability leads to a Denial of Service (DoS), making the server unavailable to legitimate users.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1286 - Improper Validation of Syntactic Correctness of Input

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix Workaround

Known not affected 17 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64	—	Workaround

Threats

Impact Important

CVE-2026-33219

A flaw was found in NATS-Server. A malicious client connecting to the WebSockets port can cause unbounded memory use before authentication by sending a large amount of data. This resource exhaustion vulnerability can lead to a Denial of Service (DoS) for the server, making it unavailable to legitimate users.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix Workaround

Known not affected 17 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64	—	Workaround

Threats

Impact Important

CVE-2026-33247

A flaw was found in NATS-Server. If the NATS-Server is configured with static credentials provided through command-line arguments (argv) and the monitoring port is enabled, a remote attacker with access to the monitoring port can view these credentials. The /debug/vars endpoint on the monitoring port exposes an unredacted copy of the command-line arguments, leading to information disclosure of sensitive authentication details.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE-214 - Invocation of Process Using Visible Sensitive Information

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix Workaround

Known not affected 17 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64	—	Workaround

Threats

Impact Important

CVE-2026-33413

A flaw was found in etcd, a distributed key-value store. Unauthorized users can bypass authentication or authorization checks when the gRPC API is exposed to untrusted clients. This allows them to access sensitive cluster topology information, disrupt operations through alarms, interfere with lease management, and trigger data compaction, leading to permanent data loss and disruption of critical workflows. This vulnerability can result in information disclosure and denial of service.

7.7 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:H

CWE-306 - Missing Authentication for Critical Function

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix Workaround

Known not affected 17 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64	—	Workaround

Threats

Impact Moderate

CVE-2026-33487

A flaw was found in goxmlsig, a Go library for XML Digital Signatures. This vulnerability arises from a programming error, specifically a loop variable capture issue, within the `validateSignature` function. When processing XML Digital Signatures, this error can cause the system to incorrectly validate the signature, potentially allowing an attacker to bypass integrity checks. This issue affects Go versions before 1.22 or projects using older `go.mod` configurations.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CWE-347 - Improper Verification of Cryptographic Signature

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix Workaround

Known not affected 17 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64	—	Workaround

Threats

Impact Important

CVE-2026-33810

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L

CWE-1289 - Improper Validation of Unsafe Equivalence in Input

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x	—	Vendor Fix fix

Known not affected 17 products

Product	Identifier	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64		—

Threats

Impact Important

CVE-2026-33813

A flaw was found in golang.org/x/image. A remote attacker could exploit this vulnerability by providing a specially crafted WEBP image with an invalid, large size. This could cause the application to panic and crash on 32-bit platforms, leading to a Denial of Service (DoS).

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-190 - Integer Overflow or Wraparound

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix

Known not affected 17 products

Product	Identifier	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64		—

Threats

Impact Moderate

CVE-2026-33997

A flaw was found in Moby, an open-source container framework. This vulnerability allows for a privilege validation bypass during `docker plugin install`. Due to an error in the daemon's privilege comparison logic, the system may incorrectly accept a plugin's requested privileges that differ from those approved by the user. This could lead to unauthorized privilege escalation for installed plugins.

8.4 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H

CWE-266 - Incorrect Privilege Assignment

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix

Known not affected 17 products

Product	Identifier	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64		—

Threats

Impact Important

CVE-2026-34040

A flaw was found in Moby, an open-source container framework. This security vulnerability allows attackers to bypass authorization plugins (AuthZ), which are mechanisms designed to control access and permissions within the container environment. The bypass of these plugins can lead to unauthorized operations and potential compromise of the system's integrity and confidentiality.

8.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N

CWE-807 - Reliance on Untrusted Inputs in a Security Decision

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix Workaround

Known not affected 17 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64	—	Workaround

Threats

Impact Moderate

CVE-2026-34986

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-131 - Incorrect Calculation of Buffer Size

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix Workaround

Known not affected 17 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64	—	Workaround

Threats

Impact Important

CVE-2026-40890

A flaw was found in github.com/gomarkdown/markdown, a Go library for parsing Markdown text and rendering as HTML. A remote attacker could exploit this vulnerability by providing a specially crafted malformed input. Specifically, input containing a '<' character not followed by a '>' character, when processed by the SmartypantsRenderer, can lead to an out-of-bounds read or a panic. This can result in a denial of service (DoS) for the application, making it unavailable to legitimate users.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1286 - Improper Validation of Syntactic Correctness of Input

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix Workaround

Known not affected 17 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64	—	Workaround

Threats

Impact Moderate

CVE-2026-41602

A flaw was found in the Apache Thrift TFramedTransport Go language implementation. This integer overflow or wraparound vulnerability could potentially allow an attacker to cause unexpected behavior or resource exhaustion, leading to a denial of service.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-190 - Integer Overflow or Wraparound

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix

Known not affected 17 products

Product	Identifier	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64		—

Threats

Impact Important

CVE-2026-41603

A flaw was found in Apache Thrift. This vulnerability involves improper validation of server certificates, where the hostname presented in the certificate does not match the expected hostname. A remote attacker could exploit this to impersonate a legitimate server, potentially intercepting or altering sensitive communications and leading to unauthorized access or information disclosure.

8.2 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

CWE-295 - Improper Certificate Validation

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix

Known not affected 17 products

Product	Identifier	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64		—

Threats

Impact Important

CVE-2026-41604

A flaw was found in Apache Thrift. This out-of-bounds read vulnerability could allow an attacker to access memory outside of allocated bounds. This could lead to information disclosure or potentially a denial of service (DoS) condition.

8.2 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

CWE-125 - Out-of-bounds Read

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix

Known not affected 17 products

Product	Identifier	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64		—

Threats

Impact Important

CVE-2026-41605

A flaw was found in Apache Thrift. This integer overflow or wraparound vulnerability could potentially lead to unexpected behavior or resource exhaustion, which may impact the availability or integrity of the system. The exact consequences depend on how the overflow is triggered and handled within the application.

7.7 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:H

CWE-190 - Integer Overflow or Wraparound

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix

Known not affected 17 products

Product	Identifier	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64		—

Threats

Impact Important

CVE-2026-41606

A flaw was found in Apache Thrift. An uncontrolled recursion vulnerability exists, which could allow a remote attacker to trigger a Denial of Service (DoS) condition. This occurs when the affected component processes specially crafted input, leading to excessive resource consumption and system unavailability.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-606 - Unchecked Input for Loop Condition

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix

Known not affected 17 products

Product	Identifier	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64		—

Threats

Impact Important

CVE-2026-41607

A flaw was found in Apache Thrift. This out-of-bounds read vulnerability can lead to the disclosure of sensitive information or a denial of service.

9.1 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

CWE-125 - Out-of-bounds Read

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix

Known not affected 17 products

Product	Identifier	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64		—

Threats

Impact Important

CVE-2026-41636

Uncontrolled Recursion vulnerability in Apache Thrift Node.js bindings This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the issue.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-776 - Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion')

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix

Known not affected 17 products

Product	Identifier	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le		—
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64		—

Threats

Impact Moderate

CVE-2026-43869

A flaw was found in Apache Thrift. This vulnerability involves improper validation of a certificate with a host mismatch, which could allow a remote attacker to bypass security checks. By presenting a specially crafted certificate, an attacker may impersonate a legitimate server or client. This could lead to a security bypass, potentially enabling unauthorized access or information disclosure.

7.3 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CWE-295 - Improper Certificate Validation

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x	—	Vendor Fix fix Workaround

Known not affected 17 products

Product	Version	Remediation
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le	—	Workaround
Unresolved product id: Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64	—	Workaround

Threats

Impact Important

References

248 references

URL	Category
https://access.redhat.com/errata/RHSA-2026:21769	self
https://access.redhat.com/security/cve/CVE-2026-21728	external
https://access.redhat.com/security/cve/CVE-2026-25679	external
https://access.redhat.com/security/cve/CVE-2026-27137	external
https://access.redhat.com/security/cve/CVE-2026-27889	external
https://access.redhat.com/security/cve/CVE-2026-29785	external
https://access.redhat.com/security/cve/CVE-2026-32280	external
https://access.redhat.com/security/cve/CVE-2026-32281	external
https://access.redhat.com/security/cve/CVE-2026-32282	external
https://access.redhat.com/security/cve/CVE-2026-32283	external
https://access.redhat.com/security/cve/CVE-2026-32285	external
https://access.redhat.com/security/cve/CVE-2026-32286	external
https://access.redhat.com/security/cve/CVE-2026-33186	external
https://access.redhat.com/security/cve/CVE-2026-33215	external
https://access.redhat.com/security/cve/CVE-2026-33216	external
https://access.redhat.com/security/cve/CVE-2026-33217	external
https://access.redhat.com/security/cve/CVE-2026-33218	external
https://access.redhat.com/security/cve/CVE-2026-33219	external
https://access.redhat.com/security/cve/CVE-2026-33247	external
https://access.redhat.com/security/cve/CVE-2026-33413	external
https://access.redhat.com/security/cve/CVE-2026-33487	external
https://access.redhat.com/security/cve/CVE-2026-33810	external
https://access.redhat.com/security/cve/CVE-2026-33813	external
https://access.redhat.com/security/cve/CVE-2026-33997	external
https://access.redhat.com/security/cve/CVE-2026-34040	external
https://access.redhat.com/security/cve/CVE-2026-34986	external
https://access.redhat.com/security/cve/CVE-2026-40890	external
https://access.redhat.com/security/cve/CVE-2026-41602	external
https://access.redhat.com/security/cve/CVE-2026-41603	external
https://access.redhat.com/security/cve/CVE-2026-41604	external
https://access.redhat.com/security/cve/CVE-2026-41605	external
https://access.redhat.com/security/cve/CVE-2026-41606	external
https://access.redhat.com/security/cve/CVE-2026-41607	external
https://access.redhat.com/security/cve/CVE-2026-41636	external
https://access.redhat.com/security/cve/CVE-2026-43869	external
https://access.redhat.com/security/cve/CVE-2026-4427	external
https://access.redhat.com/security/updates/classi…	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2026-4427	self
https://www.cve.org/CVERecord?id=CVE-2026-4427	external
https://access.redhat.com/security/cve/CVE-2026-21728	self
https://bugzilla.redhat.com/show_bug.cgi?id=2461395	external
https://www.cve.org/CVERecord?id=CVE-2026-21728	external
https://nvd.nist.gov/vuln/detail/CVE-2026-21728	external
https://grafana.com/security/security-advisories/…	external
https://access.redhat.com/security/cve/CVE-2026-25679	self
https://bugzilla.redhat.com/show_bug.cgi?id=2445356	external
https://www.cve.org/CVERecord?id=CVE-2026-25679	external
https://nvd.nist.gov/vuln/detail/CVE-2026-25679	external
https://go.dev/cl/752180	external
https://go.dev/issue/77578	external
https://groups.google.com/g/golang-announce/c/Edh…	external
https://pkg.go.dev/vuln/GO-2026-4601	external
https://access.redhat.com/security/cve/CVE-2026-27137	self
https://bugzilla.redhat.com/show_bug.cgi?id=2445345	external
https://www.cve.org/CVERecord?id=CVE-2026-27137	external
https://nvd.nist.gov/vuln/detail/CVE-2026-27137	external
https://go.dev/cl/752182	external
https://go.dev/issue/77952	external
https://pkg.go.dev/vuln/GO-2026-4599	external
https://access.redhat.com/security/cve/CVE-2026-27889	self
https://bugzilla.redhat.com/show_bug.cgi?id=2451447	external
https://www.cve.org/CVERecord?id=CVE-2026-27889	external
https://nvd.nist.gov/vuln/detail/CVE-2026-27889	external
https://advisories.nats.io/CVE/secnote-2026-03.txt	external
https://github.com/nats-io/nats-server/security/a…	external
https://access.redhat.com/security/cve/CVE-2026-29785	self
https://bugzilla.redhat.com/show_bug.cgi?id=2451444	external
https://www.cve.org/CVERecord?id=CVE-2026-29785	external
https://nvd.nist.gov/vuln/detail/CVE-2026-29785	external
https://advisories.nats.io/CVE/secnote-2026-04.txt	external
https://github.com/nats-io/nats-server/commit/a14…	external
https://github.com/nats-io/nats-server/security/a…	external
https://access.redhat.com/security/cve/CVE-2026-32280	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456339	external
https://www.cve.org/CVERecord?id=CVE-2026-32280	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32280	external
https://go.dev/cl/758320	external
https://go.dev/issue/78282	external
https://groups.google.com/g/golang-announce/c/0uY…	external
https://pkg.go.dev/vuln/GO-2026-4947	external
https://access.redhat.com/security/cve/CVE-2026-32281	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456333	external
https://www.cve.org/CVERecord?id=CVE-2026-32281	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32281	external
https://go.dev/cl/758061	external
https://go.dev/issue/78281	external
https://pkg.go.dev/vuln/GO-2026-4946	external
https://access.redhat.com/security/cve/CVE-2026-32282	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456336	external
https://www.cve.org/CVERecord?id=CVE-2026-32282	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32282	external
https://go.dev/cl/763761	external
https://go.dev/issue/78293	external
https://pkg.go.dev/vuln/GO-2026-4864	external
https://access.redhat.com/security/cve/CVE-2026-32283	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456338	external
https://www.cve.org/CVERecord?id=CVE-2026-32283	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32283	external
https://go.dev/cl/763767	external
https://go.dev/issue/78334	external
https://pkg.go.dev/vuln/GO-2026-4870	external
https://access.redhat.com/security/cve/CVE-2026-32285	self
https://bugzilla.redhat.com/show_bug.cgi?id=2451846	external
https://www.cve.org/CVERecord?id=CVE-2026-32285	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32285	external
https://github.com/buger/jsonparser/issues/275	external
https://github.com/golang/vulndb/issues/4514	external
https://pkg.go.dev/vuln/GO-2026-4514	external
https://access.redhat.com/security/cve/CVE-2026-32286	self
https://bugzilla.redhat.com/show_bug.cgi?id=2451847	external
https://www.cve.org/CVERecord?id=CVE-2026-32286	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32286	external
https://github.com/golang/vulndb/issues/4518	external
https://github.com/jackc/pgx/issues/2507	external
https://pkg.go.dev/vuln/GO-2026-4518	external
https://access.redhat.com/security/cve/CVE-2026-33186	self
https://bugzilla.redhat.com/show_bug.cgi?id=2449833	external
https://www.cve.org/CVERecord?id=CVE-2026-33186	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33186	external
https://github.com/grpc/grpc-go/security/advisori…	external
https://access.redhat.com/security/cve/CVE-2026-33215	self
https://bugzilla.redhat.com/show_bug.cgi?id=2451021	external
https://www.cve.org/CVERecord?id=CVE-2026-33215	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33215	external
https://advisories.nats.io/CVE/secnote-2026-06.tx	external
https://github.com/nats-io/nats-server/security/a…	external
https://access.redhat.com/security/cve/CVE-2026-33216	self
https://bugzilla.redhat.com/show_bug.cgi?id=2451448	external
https://www.cve.org/CVERecord?id=CVE-2026-33216	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33216	external
https://advisories.nats.io/CVE/secnote-2026-05.txt	external
https://github.com/nats-io/nats-server/commit/b5b…	external
https://github.com/nats-io/nats-server/security/a…	external
https://access.redhat.com/security/cve/CVE-2026-33217	self
https://bugzilla.redhat.com/show_bug.cgi?id=2451446	external
https://www.cve.org/CVERecord?id=CVE-2026-33217	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33217	external
https://advisories.nats.io/CVE/secnote-2026-07.txt	external
https://github.com/nats-io/nats-server/security/a…	external
https://access.redhat.com/security/cve/CVE-2026-33218	self
https://bugzilla.redhat.com/show_bug.cgi?id=2451450	external
https://www.cve.org/CVERecord?id=CVE-2026-33218	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33218	external
https://advisories.nats.io/CVE/secnote-2026-10.txt	external
https://github.com/nats-io/nats-server/security/a…	external
https://access.redhat.com/security/cve/CVE-2026-33219	self
https://bugzilla.redhat.com/show_bug.cgi?id=2451445	external
https://www.cve.org/CVERecord?id=CVE-2026-33219	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33219	external
https://advisories.nats.io/CVE/secnote-2026-02.txt	external
https://advisories.nats.io/CVE/secnote-2026-11.txt	external
https://github.com/advisories/GHSA-qrvq-68c2-7grw	external
https://github.com/nats-io/nats-server/security/a…	external
https://access.redhat.com/security/cve/CVE-2026-33247	self
https://bugzilla.redhat.com/show_bug.cgi?id=2451486	external
https://www.cve.org/CVERecord?id=CVE-2026-33247	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33247	external
https://advisories.nats.io/CVE/secnote-2026-14.txt	external
https://github.com/nats-io/nats-server/security/a…	external
https://access.redhat.com/security/cve/CVE-2026-33413	self
https://bugzilla.redhat.com/show_bug.cgi?id=2451728	external
https://www.cve.org/CVERecord?id=CVE-2026-33413	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33413	external
https://github.com/etcd-io/etcd/security/advisori…	external
https://access.redhat.com/security/cve/CVE-2026-33487	self
https://bugzilla.redhat.com/show_bug.cgi?id=2451814	external
https://www.cve.org/CVERecord?id=CVE-2026-33487	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33487	external
https://github.com/russellhaering/goxmldsig/secur…	external
https://access.redhat.com/security/cve/CVE-2026-33810	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456335	external
https://www.cve.org/CVERecord?id=CVE-2026-33810	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33810	external
https://go.dev/cl/763763	external
https://go.dev/issue/78332	external
https://pkg.go.dev/vuln/GO-2026-4866	external
https://access.redhat.com/security/cve/CVE-2026-33813	self
https://bugzilla.redhat.com/show_bug.cgi?id=2460221	external
https://www.cve.org/CVERecord?id=CVE-2026-33813	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33813	external
https://go.dev/cl/759860	external
https://go.dev/issue/78407	external
https://pkg.go.dev/vuln/GO-2026-4961	external
https://access.redhat.com/security/cve/CVE-2026-33997	self
https://bugzilla.redhat.com/show_bug.cgi?id=2453277	external
https://www.cve.org/CVERecord?id=CVE-2026-33997	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33997	external
https://github.com/moby/moby/releases/tag/docker-…	external
https://github.com/moby/moby/security/advisories/…	external
https://access.redhat.com/security/cve/CVE-2026-34040	self
https://bugzilla.redhat.com/show_bug.cgi?id=2453278	external
https://www.cve.org/CVERecord?id=CVE-2026-34040	external
https://nvd.nist.gov/vuln/detail/CVE-2026-34040	external
https://github.com/moby/moby/security/advisories/…	external
https://access.redhat.com/security/cve/CVE-2026-34986	self
https://bugzilla.redhat.com/show_bug.cgi?id=2455470	external
https://www.cve.org/CVERecord?id=CVE-2026-34986	external
https://nvd.nist.gov/vuln/detail/CVE-2026-34986	external
https://github.com/go-jose/go-jose/security/advis…	external
https://pkg.go.dev/github.com/go-jose/go-jose/v4#…	external
https://access.redhat.com/security/cve/CVE-2026-40890	self
https://bugzilla.redhat.com/show_bug.cgi?id=2460245	external
https://www.cve.org/CVERecord?id=CVE-2026-40890	external
https://nvd.nist.gov/vuln/detail/CVE-2026-40890	external
https://github.com/gomarkdown/markdown/commit/759…	external
https://github.com/gomarkdown/markdown/security/a…	external
https://access.redhat.com/security/cve/CVE-2026-41602	self
https://bugzilla.redhat.com/show_bug.cgi?id=2463407	external
https://www.cve.org/CVERecord?id=CVE-2026-41602	external
https://nvd.nist.gov/vuln/detail/CVE-2026-41602	external
http://www.openwall.com/lists/oss-security/2026/04/28/6	external
https://lists.apache.org/thread/lb4j0zyd5f3g36cos…	external
https://access.redhat.com/security/cve/CVE-2026-41603	self
https://bugzilla.redhat.com/show_bug.cgi?id=2463411	external
https://www.cve.org/CVERecord?id=CVE-2026-41603	external
https://nvd.nist.gov/vuln/detail/CVE-2026-41603	external
http://www.openwall.com/lists/oss-security/2026/04/28/7	external
https://access.redhat.com/security/cve/CVE-2026-41604	self
https://bugzilla.redhat.com/show_bug.cgi?id=2463416	external
https://www.cve.org/CVERecord?id=CVE-2026-41604	external
https://nvd.nist.gov/vuln/detail/CVE-2026-41604	external
http://www.openwall.com/lists/oss-security/2026/04/28/5	external
https://access.redhat.com/security/cve/CVE-2026-41605	self
https://bugzilla.redhat.com/show_bug.cgi?id=2463418	external
https://www.cve.org/CVERecord?id=CVE-2026-41605	external
https://nvd.nist.gov/vuln/detail/CVE-2026-41605	external
http://www.openwall.com/lists/oss-security/2026/04/28/4	external
https://access.redhat.com/security/cve/CVE-2026-41606	self
https://bugzilla.redhat.com/show_bug.cgi?id=2463408	external
https://www.cve.org/CVERecord?id=CVE-2026-41606	external
https://nvd.nist.gov/vuln/detail/CVE-2026-41606	external
http://www.openwall.com/lists/oss-security/2026/04/28/3	external
https://access.redhat.com/security/cve/CVE-2026-41607	self
https://bugzilla.redhat.com/show_bug.cgi?id=2463412	external
https://www.cve.org/CVERecord?id=CVE-2026-41607	external
https://nvd.nist.gov/vuln/detail/CVE-2026-41607	external
http://www.openwall.com/lists/oss-security/2026/04/28/2	external
https://access.redhat.com/security/cve/CVE-2026-41636	self
https://bugzilla.redhat.com/show_bug.cgi?id=2463404	external
https://www.cve.org/CVERecord?id=CVE-2026-41636	external
https://nvd.nist.gov/vuln/detail/CVE-2026-41636	external
http://www.openwall.com/lists/oss-security/2026/04/28/1	external
https://access.redhat.com/security/cve/CVE-2026-43869	self
https://bugzilla.redhat.com/show_bug.cgi?id=2466660	external
https://www.cve.org/CVERecord?id=CVE-2026-43869	external
https://nvd.nist.gov/vuln/detail/CVE-2026-43869	external
https://lists.apache.org/thread/3hsgl1b69wzq3ry39…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Multicluster Global Hub v1.5.4 general availability release images, which provide security fixes, bug fixes, and updated container images.\n\nRed Hat Product Security has rated this update as having a security impact of Important. \nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat multicluster global hub is a set of components that enable you to import one or more hub clusters and manage them from a single hub cluster.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2026:21769",
        "url": "https://access.redhat.com/errata/RHSA-2026:21769"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-21728",
        "url": "https://access.redhat.com/security/cve/CVE-2026-21728"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-25679",
        "url": "https://access.redhat.com/security/cve/CVE-2026-25679"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-27137",
        "url": "https://access.redhat.com/security/cve/CVE-2026-27137"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-27889",
        "url": "https://access.redhat.com/security/cve/CVE-2026-27889"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-29785",
        "url": "https://access.redhat.com/security/cve/CVE-2026-29785"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-32280",
        "url": "https://access.redhat.com/security/cve/CVE-2026-32280"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-32281",
        "url": "https://access.redhat.com/security/cve/CVE-2026-32281"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-32282",
        "url": "https://access.redhat.com/security/cve/CVE-2026-32282"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-32283",
        "url": "https://access.redhat.com/security/cve/CVE-2026-32283"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-32285",
        "url": "https://access.redhat.com/security/cve/CVE-2026-32285"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-32286",
        "url": "https://access.redhat.com/security/cve/CVE-2026-32286"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-33186",
        "url": "https://access.redhat.com/security/cve/CVE-2026-33186"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-33215",
        "url": "https://access.redhat.com/security/cve/CVE-2026-33215"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-33216",
        "url": "https://access.redhat.com/security/cve/CVE-2026-33216"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-33217",
        "url": "https://access.redhat.com/security/cve/CVE-2026-33217"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-33218",
        "url": "https://access.redhat.com/security/cve/CVE-2026-33218"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-33219",
        "url": "https://access.redhat.com/security/cve/CVE-2026-33219"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-33247",
        "url": "https://access.redhat.com/security/cve/CVE-2026-33247"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-33413",
        "url": "https://access.redhat.com/security/cve/CVE-2026-33413"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-33487",
        "url": "https://access.redhat.com/security/cve/CVE-2026-33487"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-33810",
        "url": "https://access.redhat.com/security/cve/CVE-2026-33810"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-33813",
        "url": "https://access.redhat.com/security/cve/CVE-2026-33813"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-33997",
        "url": "https://access.redhat.com/security/cve/CVE-2026-33997"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-34040",
        "url": "https://access.redhat.com/security/cve/CVE-2026-34040"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-34986",
        "url": "https://access.redhat.com/security/cve/CVE-2026-34986"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-40890",
        "url": "https://access.redhat.com/security/cve/CVE-2026-40890"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-41602",
        "url": "https://access.redhat.com/security/cve/CVE-2026-41602"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-41603",
        "url": "https://access.redhat.com/security/cve/CVE-2026-41603"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-41604",
        "url": "https://access.redhat.com/security/cve/CVE-2026-41604"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-41605",
        "url": "https://access.redhat.com/security/cve/CVE-2026-41605"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-41606",
        "url": "https://access.redhat.com/security/cve/CVE-2026-41606"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-41607",
        "url": "https://access.redhat.com/security/cve/CVE-2026-41607"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-41636",
        "url": "https://access.redhat.com/security/cve/CVE-2026-41636"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-43869",
        "url": "https://access.redhat.com/security/cve/CVE-2026-43869"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-4427",
        "url": "https://access.redhat.com/security/cve/CVE-2026-4427"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/",
        "url": "https://access.redhat.com/security/updates/classification/"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_21769.json"
      }
    ],
    "title": "Red Hat Security Advisory: Multicluster Global Hub 1.5.4 security update",
    "tracking": {
      "current_release_date": "2026-06-08T07:56:23+00:00",
      "generator": {
        "date": "2026-06-08T07:56:23+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.8.2"
        }
      },
      "id": "RHSA-2026:21769",
      "initial_release_date": "2026-05-28T20:39:36+00:00",
      "revision_history": [
        {
          "date": "2026-05-28T20:39:36+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2026-05-28T20:39:47+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-06-08T07:56:23+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Multicluster Global Hub 1.5.4",
                "product": {
                  "name": "Multicluster Global Hub 1.5.4",
                  "product_id": "Multicluster Global Hub 1.5.4",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:multicluster_globalhub:1.5::el9"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Multicluster Global Hub"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
                "product": {
                  "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
                  "product_id": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/multicluster-globalhub-grafana-rhel9@sha256%3Ad91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9\u0026tag=1778867753"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
                "product": {
                  "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
                  "product_id": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/multicluster-globalhub-agent-rhel9@sha256%3Adc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9\u0026tag=1779828691"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
                "product": {
                  "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
                  "product_id": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/multicluster-globalhub-manager-rhel9@sha256%3Ab70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9\u0026tag=1779828813"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
                "product": {
                  "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
                  "product_id": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/multicluster-globalhub-operator-bundle@sha256%3A8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle\u0026tag=1779837290"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
                "product": {
                  "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
                  "product_id": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/multicluster-globalhub-rhel9-operator@sha256%3A48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator\u0026tag=1779828536"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
                "product": {
                  "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
                  "product_id": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/multicluster-globalhub-postgres-exporter-rhel9@sha256%3A6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc?arch=amd64\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9\u0026tag=1779835152"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "amd64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
                "product": {
                  "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
                  "product_id": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/multicluster-globalhub-grafana-rhel9@sha256%3A8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9\u0026tag=1778867753"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
                "product": {
                  "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
                  "product_id": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/multicluster-globalhub-agent-rhel9@sha256%3A62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9\u0026tag=1779828691"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
                "product": {
                  "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
                  "product_id": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/multicluster-globalhub-manager-rhel9@sha256%3A42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9\u0026tag=1779828813"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
                "product": {
                  "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
                  "product_id": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/multicluster-globalhub-rhel9-operator@sha256%3Ac985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator\u0026tag=1779828536"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
                "product": {
                  "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
                  "product_id": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/multicluster-globalhub-postgres-exporter-rhel9@sha256%3A33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6?arch=ppc64le\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9\u0026tag=1779835152"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
                "product": {
                  "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
                  "product_id": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/multicluster-globalhub-grafana-rhel9@sha256%3Afc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9\u0026tag=1778867753"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
                "product": {
                  "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
                  "product_id": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/multicluster-globalhub-agent-rhel9@sha256%3Afb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9\u0026tag=1779828691"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
                "product": {
                  "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
                  "product_id": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/multicluster-globalhub-manager-rhel9@sha256%3A19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9\u0026tag=1779828813"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
                "product": {
                  "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
                  "product_id": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/multicluster-globalhub-rhel9-operator@sha256%3A176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator\u0026tag=1779828536"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
                "product": {
                  "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
                  "product_id": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/multicluster-globalhub-postgres-exporter-rhel9@sha256%3Aeaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59?arch=s390x\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9\u0026tag=1779835152"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
                "product": {
                  "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
                  "product_id": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/multicluster-globalhub-grafana-rhel9@sha256%3Ae26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9\u0026tag=1778867753"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
                "product": {
                  "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
                  "product_id": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/multicluster-globalhub-agent-rhel9@sha256%3Adf44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9\u0026tag=1779828691"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
                "product": {
                  "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
                  "product_id": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/multicluster-globalhub-manager-rhel9@sha256%3Abb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9\u0026tag=1779828813"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64",
                "product": {
                  "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64",
                  "product_id": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/multicluster-globalhub-rhel9-operator@sha256%3Acffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator\u0026tag=1779828536"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
                "product": {
                  "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
                  "product_id": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/multicluster-globalhub-postgres-exporter-rhel9@sha256%3A74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4?arch=arm64\u0026repository_url=registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9\u0026tag=1779835152"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "arm64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le as a component of Multicluster Global Hub 1.5.4",
          "product_id": "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le"
        },
        "product_reference": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
        "relates_to_product_reference": "Multicluster Global Hub 1.5.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64 as a component of Multicluster Global Hub 1.5.4",
          "product_id": "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64"
        },
        "product_reference": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
        "relates_to_product_reference": "Multicluster Global Hub 1.5.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64 as a component of Multicluster Global Hub 1.5.4",
          "product_id": "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64"
        },
        "product_reference": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
        "relates_to_product_reference": "Multicluster Global Hub 1.5.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x as a component of Multicluster Global Hub 1.5.4",
          "product_id": "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x"
        },
        "product_reference": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
        "relates_to_product_reference": "Multicluster Global Hub 1.5.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le as a component of Multicluster Global Hub 1.5.4",
          "product_id": "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le"
        },
        "product_reference": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
        "relates_to_product_reference": "Multicluster Global Hub 1.5.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64 as a component of Multicluster Global Hub 1.5.4",
          "product_id": "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64"
        },
        "product_reference": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
        "relates_to_product_reference": "Multicluster Global Hub 1.5.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64 as a component of Multicluster Global Hub 1.5.4",
          "product_id": "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64"
        },
        "product_reference": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
        "relates_to_product_reference": "Multicluster Global Hub 1.5.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x as a component of Multicluster Global Hub 1.5.4",
          "product_id": "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        },
        "product_reference": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
        "relates_to_product_reference": "Multicluster Global Hub 1.5.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x as a component of Multicluster Global Hub 1.5.4",
          "product_id": "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x"
        },
        "product_reference": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
        "relates_to_product_reference": "Multicluster Global Hub 1.5.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le as a component of Multicluster Global Hub 1.5.4",
          "product_id": "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le"
        },
        "product_reference": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
        "relates_to_product_reference": "Multicluster Global Hub 1.5.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64 as a component of Multicluster Global Hub 1.5.4",
          "product_id": "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64"
        },
        "product_reference": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
        "relates_to_product_reference": "Multicluster Global Hub 1.5.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64 as a component of Multicluster Global Hub 1.5.4",
          "product_id": "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64"
        },
        "product_reference": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
        "relates_to_product_reference": "Multicluster Global Hub 1.5.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64 as a component of Multicluster Global Hub 1.5.4",
          "product_id": "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64"
        },
        "product_reference": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
        "relates_to_product_reference": "Multicluster Global Hub 1.5.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le as a component of Multicluster Global Hub 1.5.4",
          "product_id": "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le"
        },
        "product_reference": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
        "relates_to_product_reference": "Multicluster Global Hub 1.5.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64 as a component of Multicluster Global Hub 1.5.4",
          "product_id": "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64"
        },
        "product_reference": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
        "relates_to_product_reference": "Multicluster Global Hub 1.5.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64 as a component of Multicluster Global Hub 1.5.4",
          "product_id": "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64"
        },
        "product_reference": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
        "relates_to_product_reference": "Multicluster Global Hub 1.5.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x as a component of Multicluster Global Hub 1.5.4",
          "product_id": "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x"
        },
        "product_reference": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
        "relates_to_product_reference": "Multicluster Global Hub 1.5.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x as a component of Multicluster Global Hub 1.5.4",
          "product_id": "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x"
        },
        "product_reference": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
        "relates_to_product_reference": "Multicluster Global Hub 1.5.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64 as a component of Multicluster Global Hub 1.5.4",
          "product_id": "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64"
        },
        "product_reference": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
        "relates_to_product_reference": "Multicluster Global Hub 1.5.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le as a component of Multicluster Global Hub 1.5.4",
          "product_id": "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le"
        },
        "product_reference": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
        "relates_to_product_reference": "Multicluster Global Hub 1.5.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64 as a component of Multicluster Global Hub 1.5.4",
          "product_id": "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        },
        "product_reference": "registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64",
        "relates_to_product_reference": "Multicluster Global Hub 1.5.4"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2026-4427",
      "discovery_date": "2026-03-18T14:02:19.414820+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "No description is available for this CVE.",
          "title": "Vulnerability description"
        },
        {
          "category": "other",
          "text": "This CVE has been marked as Rejected by the assigning CNA.",
          "title": "Statement"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-4427"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-4427",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-4427"
        }
      ],
      "release_date": "2026-03-18T13:00:31+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        }
      ],
      "title": "github.com/jackc/pgproto3: pgproto3: Denial of Service via negative field length in DataRow message"
    },
    {
      "cve": "CVE-2026-21728",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2026-04-24T09:00:58.144273+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2461395"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Tempo. A remote attacker can exploit this vulnerability by sending large queries to the Tempo service. This can lead to excessive memory allocations, potentially causing a Denial of Service (DoS) by impacting the availability of the service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "grafana/tempo: Tempo: Denial of Service via large queries",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-21728"
        },
        {
          "category": "external",
          "summary": "RHBZ#2461395",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2461395"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-21728",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-21728"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-21728",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-21728"
        },
        {
          "category": "external",
          "summary": "https://grafana.com/security/security-advisories/cve-2026-21728",
          "url": "https://grafana.com/security/security-advisories/cve-2026-21728"
        }
      ],
      "release_date": "2026-04-24T08:00:47.074000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "grafana/tempo: Tempo: Denial of Service via large queries"
    },
    {
      "cve": "CVE-2026-25679",
      "cwe": {
        "id": "CWE-1286",
        "name": "Improper Validation of Syntactic Correctness of Input"
      },
      "discovery_date": "2026-03-06T22:02:11.567841+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2445356"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-25679"
        },
        {
          "category": "external",
          "summary": "RHBZ#2445356",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/752180",
          "url": "https://go.dev/cl/752180"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/77578",
          "url": "https://go.dev/issue/77578"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
          "url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4601",
          "url": "https://pkg.go.dev/vuln/GO-2026-4601"
        }
      ],
      "release_date": "2026-03-06T21:28:14.211000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
    },
    {
      "cve": "CVE-2026-27137",
      "cwe": {
        "id": "CWE-295",
        "name": "Improper Certificate Validation"
      },
      "discovery_date": "2026-03-06T22:01:38.859733+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2445345"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A certificate validation flaw has been discovered in the golang crypto/x509 module. When verifying a certificate chain which contains a certificate containing multiple email address constraints which share common local portions but different domain portions, these constraints will not be properly applied, and only the last constraint will be considered.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/x509: Incorrect enforcement of email constraints in crypto/x509",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-27137"
        },
        {
          "category": "external",
          "summary": "RHBZ#2445345",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445345"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-27137",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-27137"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27137",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27137"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/752182",
          "url": "https://go.dev/cl/752182"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/77952",
          "url": "https://go.dev/issue/77952"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
          "url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4599",
          "url": "https://pkg.go.dev/vuln/GO-2026-4599"
        }
      ],
      "release_date": "2026-03-06T21:28:13.748000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "crypto/x509: Incorrect enforcement of email constraints in crypto/x509"
    },
    {
      "cve": "CVE-2026-27889",
      "cwe": {
        "id": "CWE-1286",
        "name": "Improper Validation of Syntactic Correctness of Input"
      },
      "discovery_date": "2026-03-25T20:01:58.261703+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2451447"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in NATS-Server, a high-performance messaging system. A remote attacker can exploit this vulnerability before authentication by sending a specially crafted WebSockets frame. This missing sanity check can trigger a server panic, leading to a Denial of Service (DoS) for affected deployments that use WebSockets and expose the network port to untrusted endpoints.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "github.com/nats-io/nats-server: NATS-Server: Denial of Service via malformed WebSockets frame",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-27889"
        },
        {
          "category": "external",
          "summary": "RHBZ#2451447",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451447"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-27889",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-27889"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27889",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27889"
        },
        {
          "category": "external",
          "summary": "https://advisories.nats.io/CVE/secnote-2026-03.txt",
          "url": "https://advisories.nats.io/CVE/secnote-2026-03.txt"
        },
        {
          "category": "external",
          "summary": "https://github.com/nats-io/nats-server/security/advisories/GHSA-pq2q-rcw4-3hr6",
          "url": "https://github.com/nats-io/nats-server/security/advisories/GHSA-pq2q-rcw4-3hr6"
        }
      ],
      "release_date": "2026-03-25T19:36:36.370000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "github.com/nats-io/nats-server: NATS-Server: Denial of Service via malformed WebSockets frame"
    },
    {
      "cve": "CVE-2026-29785",
      "cwe": {
        "id": "CWE-409",
        "name": "Improper Handling of Highly Compressed Data (Data Amplification)"
      },
      "discovery_date": "2026-03-25T20:01:35.121898+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2451444"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in NATS-Server. A remote attacker can exploit this vulnerability by connecting to a NATS-Server instance where the \u0027leafnode\u0027 configuration is enabled and compression is active. This pre-authentication flaw allows the attacker to trigger a server crash, resulting in a Denial of Service (DoS) for the affected system.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "github.com/nats-io/nats-server: NATS-Server: Denial of Service via leafnode compression",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-29785"
        },
        {
          "category": "external",
          "summary": "RHBZ#2451444",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451444"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-29785",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-29785"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-29785",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-29785"
        },
        {
          "category": "external",
          "summary": "https://advisories.nats.io/CVE/secnote-2026-04.txt",
          "url": "https://advisories.nats.io/CVE/secnote-2026-04.txt"
        },
        {
          "category": "external",
          "summary": "https://github.com/nats-io/nats-server/commit/a1488de6f2ba6e666aef0f9cce0016f7f167d6a8",
          "url": "https://github.com/nats-io/nats-server/commit/a1488de6f2ba6e666aef0f9cce0016f7f167d6a8"
        },
        {
          "category": "external",
          "summary": "https://github.com/nats-io/nats-server/security/advisories/GHSA-52jh-2xxh-pwh6",
          "url": "https://github.com/nats-io/nats-server/security/advisories/GHSA-52jh-2xxh-pwh6"
        }
      ],
      "release_date": "2026-03-25T19:38:44.587000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "github.com/nats-io/nats-server: NATS-Server: Denial of Service via leafnode compression"
    },
    {
      "cve": "CVE-2026-32280",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2026-04-08T02:01:19.572351+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456339"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456339",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32280",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/758320",
          "url": "https://go.dev/cl/758320"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78282",
          "url": "https://go.dev/issue/78282"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4947",
          "url": "https://pkg.go.dev/vuln/GO-2026-4947"
        }
      ],
      "release_date": "2026-04-08T01:06:58.595000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building"
    },
    {
      "cve": "CVE-2026-32281",
      "cwe": {
        "id": "CWE-1050",
        "name": "Excessive Platform Resource Consumption within a Loop"
      },
      "discovery_date": "2026-04-08T02:01:00.930989+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456333"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Go\u0027s `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This flaw occurs during the validation of otherwise trusted certificate chains that contain a large number of policy mappings, leading to excessive resource consumption. Exploitation requires an attacker to present a specially crafted, yet trusted, certificate chain which would require the attacker has already compromised a trusted certificate root. Red Hat continuously monitors certificate authorities and curates the set which is trusted by default for Red Hat products.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32281"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456333",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32281",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32281"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/758061",
          "url": "https://go.dev/cl/758061"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78281",
          "url": "https://go.dev/issue/78281"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4946",
          "url": "https://pkg.go.dev/vuln/GO-2026-4946"
        }
      ],
      "release_date": "2026-04-08T01:06:58.354000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation"
    },
    {
      "cve": "CVE-2026-32282",
      "cwe": {
        "id": "CWE-367",
        "name": "Time-of-check Time-of-use (TOCTOU) Race Condition"
      },
      "discovery_date": "2026-04-08T02:01:12.683211+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456336"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs access to the system and the required permissions to create a symbolic link. Additionally, the attacker must swap the target file with a symbolic link in the exact window after the `Root.Chmod` function checks its target but before acting. Due to these conditions, this flaw has been rated with a moderate severity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456336",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32282",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/763761",
          "url": "https://go.dev/cl/763761"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78293",
          "url": "https://go.dev/issue/78293"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4864",
          "url": "https://pkg.go.dev/vuln/GO-2026-4864"
        }
      ],
      "release_date": "2026-04-08T01:06:55.953000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root"
    },
    {
      "cve": "CVE-2026-32283",
      "cwe": {
        "id": "CWE-764",
        "name": "Multiple Locks of a Critical Resource"
      },
      "discovery_date": "2026-04-08T02:01:16.213799+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456338"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the `crypto/tls` package within the Go (golang) standard library, specifically affecting TLS 1.3 connections. A remote attacker can exploit this vulnerability by sending multiple key update messages in a single record after the handshake. This can cause the connection to deadlock, leading to uncontrolled consumption of resources and ultimately a denial of service (DoS).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32283"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456338",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32283",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32283"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/763767",
          "url": "https://go.dev/cl/763767"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78334",
          "url": "https://go.dev/issue/78334"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4870",
          "url": "https://pkg.go.dev/vuln/GO-2026-4870"
        }
      ],
      "release_date": "2026-04-08T01:06:57.670000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages"
    },
    {
      "cve": "CVE-2026-32285",
      "cwe": {
        "id": "CWE-1285",
        "name": "Improper Validation of Specified Index, Position, or Offset in Input"
      },
      "discovery_date": "2026-03-26T20:01:54.925687+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2451846"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in github.com/buger/jsonparser. The Delete function, when processing malformed JSON input, fails to properly validate offsets. This vulnerability can lead to a negative slice index and a runtime panic, allowing a remote attacker to cause a denial of service (DoS) by providing specially crafted JSON data.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "github.com/buger/jsonparser: github.com/buger/jsonparser: Denial of Service via malformed JSON input",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32285"
        },
        {
          "category": "external",
          "summary": "RHBZ#2451846",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451846"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32285",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32285"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32285",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32285"
        },
        {
          "category": "external",
          "summary": "https://github.com/buger/jsonparser/issues/275",
          "url": "https://github.com/buger/jsonparser/issues/275"
        },
        {
          "category": "external",
          "summary": "https://github.com/golang/vulndb/issues/4514",
          "url": "https://github.com/golang/vulndb/issues/4514"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4514",
          "url": "https://pkg.go.dev/vuln/GO-2026-4514"
        }
      ],
      "release_date": "2026-03-26T19:40:51.837000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "github.com/buger/jsonparser: github.com/buger/jsonparser: Denial of Service via malformed JSON input"
    },
    {
      "cve": "CVE-2026-32286",
      "cwe": {
        "id": "CWE-1285",
        "name": "Improper Validation of Specified Index, Position, or Offset in Input"
      },
      "discovery_date": "2026-03-26T20:01:59.226117+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2451847"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the DataRow.Decode function within the github.com/jackc/pgproto3/v2 component. A malicious or compromised PostgreSQL server can exploit this by sending a DataRow message containing a negative field length. This improper validation of field lengths leads to a \"slice bounds out of range panic\", resulting in a Denial of Service (DoS) for the affected application.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "github.com/jackc/pgproto3/v2: github.com/jackc/pgproto3/v2: Denial of Service via malicious PostgreSQL server",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The PostgreSQL server multicluster-globalhub-manager connects to is either provisioned by the operator itself or specified by the admin managing the deployment. To successfully exploit the vulnerability in this context the attacker would need to compromise the operator-deployed PostgreSQL server to force a crafted malicious DataRow message or they would need to have the privileges required to modify the operator-provisioned deployment or configure globalhub-manager to use a compromised/malicious \u201cBYO Postgres\u201d server.\n\nThe first scenario (compromising a legitimate PostgreSQL server) would change Attack Complexity from Low to High resulting in an adjusted CVSS v3.1 score of 5.9 (Moderate)\nThe other scenarios (manipulating the operator provisioned-deployment or configuring the globalhub-manager to use a malicious server) would maintain AC:L but would require privileged access. This would change Privileges Required from None to High resulting in an adjusted CVSS v3.1 score of 4.9 (Moderate)\n\nBased on the above the Impact Rating for multicluster-globalhub-manager-rhel9 is  Moderate.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32286"
        },
        {
          "category": "external",
          "summary": "RHBZ#2451847",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451847"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32286",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32286"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32286",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32286"
        },
        {
          "category": "external",
          "summary": "https://github.com/golang/vulndb/issues/4518",
          "url": "https://github.com/golang/vulndb/issues/4518"
        },
        {
          "category": "external",
          "summary": "https://github.com/jackc/pgx/issues/2507",
          "url": "https://github.com/jackc/pgx/issues/2507"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4518",
          "url": "https://pkg.go.dev/vuln/GO-2026-4518"
        }
      ],
      "release_date": "2026-03-26T19:40:51.974000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "github.com/jackc/pgproto3/v2: github.com/jackc/pgproto3/v2: Denial of Service via malicious PostgreSQL server"
    },
    {
      "cve": "CVE-2026-33186",
      "cwe": {
        "id": "CWE-551",
        "name": "Incorrect Behavior Order: Authorization Before Parsing and Canonicalization"
      },
      "discovery_date": "2026-03-20T23:02:27.802640+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2449833"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33186"
        },
        {
          "category": "external",
          "summary": "RHBZ#2449833",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33186",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33186"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186"
        },
        {
          "category": "external",
          "summary": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3",
          "url": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3"
        }
      ],
      "release_date": "2026-03-20T22:23:32.147000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        },
        {
          "category": "workaround",
          "details": "To mitigate this issue, implement infrastructure-level normalization to ensure all incoming HTTP/2 `:path` headers are properly formatted with a leading slash before reaching the gRPC-Go server. This can be achieved by configuring a reverse proxy or API gateway to validate and normalize the `:path` header. Ensure that any such intermediary is properly configured and restarted to apply the changes, which may temporarily impact service availability.",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 9.1,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation"
    },
    {
      "cve": "CVE-2026-33215",
      "cwe": {
        "id": "CWE-290",
        "name": "Authentication Bypass by Spoofing"
      },
      "discovery_date": "2026-03-24T22:01:19.032191+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2451021"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in NATS-Server. A remote attacker could exploit this vulnerability by manipulating MQTT (Message Queuing Telemetry Transport) Client IDs. This malfeasance allows for the hijacking of client sessions and messages. This could lead to unauthorized access to sensitive information or disruption of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "nats-server: NATS-Server: Session and message hijacking via MQTT Client ID malfeasance",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33215"
        },
        {
          "category": "external",
          "summary": "RHBZ#2451021",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451021"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33215",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33215"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33215",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33215"
        },
        {
          "category": "external",
          "summary": "https://advisories.nats.io/CVE/secnote-2026-06.tx",
          "url": "https://advisories.nats.io/CVE/secnote-2026-06.tx"
        },
        {
          "category": "external",
          "summary": "https://github.com/nats-io/nats-server/security/advisories/GHSA-fcjp-h8cc-6879",
          "url": "https://github.com/nats-io/nats-server/security/advisories/GHSA-fcjp-h8cc-6879"
        }
      ],
      "release_date": "2026-03-24T20:55:53.455000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "nats-server: NATS-Server: Session and message hijacking via MQTT Client ID malfeasance"
    },
    {
      "cve": "CVE-2026-33216",
      "cwe": {
        "id": "CWE-213",
        "name": "Exposure of Sensitive Information Due to Incompatible Policies"
      },
      "discovery_date": "2026-03-25T20:02:03.000174+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2451448"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in NATS-Server, a high-performance server for the NATS.io messaging system. For MQTT deployments utilizing usercodes and passwords, the MQTT passwords were mistakenly categorized as non-authenticating identity statements (JSON Web Tokens - JWT). This misclassification leads to the exposure of these passwords through monitoring endpoints, enabling an attacker with access to these endpoints to gain sensitive information.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "nats-server: github.com/nats-io/nats-server: NATS-Server: Information disclosure of MQTT passwords through monitoring endpoints",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33216"
        },
        {
          "category": "external",
          "summary": "RHBZ#2451448",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451448"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33216",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33216"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33216",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33216"
        },
        {
          "category": "external",
          "summary": "https://advisories.nats.io/CVE/secnote-2026-05.txt",
          "url": "https://advisories.nats.io/CVE/secnote-2026-05.txt"
        },
        {
          "category": "external",
          "summary": "https://github.com/nats-io/nats-server/commit/b5b63cfc35a57075e09c1f57503d31721bed8099",
          "url": "https://github.com/nats-io/nats-server/commit/b5b63cfc35a57075e09c1f57503d31721bed8099"
        },
        {
          "category": "external",
          "summary": "https://github.com/nats-io/nats-server/security/advisories/GHSA-v722-jcv5-w7mc",
          "url": "https://github.com/nats-io/nats-server/security/advisories/GHSA-v722-jcv5-w7mc"
        }
      ],
      "release_date": "2026-03-25T19:41:55.670000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 8.6,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "nats-server: github.com/nats-io/nats-server: NATS-Server: Information disclosure of MQTT passwords through monitoring endpoints"
    },
    {
      "cve": "CVE-2026-33217",
      "cwe": {
        "id": "CWE-425",
        "name": "Direct Request (\u0027Forced Browsing\u0027)"
      },
      "discovery_date": "2026-03-25T20:01:47.815937+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2451446"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in NATS-Server. When Access Control Lists (ACLs) were configured for message subjects, these controls were not correctly applied within the `$MQTT.\u003e` namespace. This oversight allows MQTT clients to bypass the intended ACL checks, potentially granting unauthorized access to sensitive message subjects. This vulnerability could lead to information disclosure or unauthorized message manipulation.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "nats-server: github.com/nats-io/nats-server: NATS-Server: Access control bypass via unapplied ACLs in MQTT namespace",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33217"
        },
        {
          "category": "external",
          "summary": "RHBZ#2451446",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451446"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33217",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33217"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33217",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33217"
        },
        {
          "category": "external",
          "summary": "https://advisories.nats.io/CVE/secnote-2026-07.txt",
          "url": "https://advisories.nats.io/CVE/secnote-2026-07.txt"
        },
        {
          "category": "external",
          "summary": "https://github.com/nats-io/nats-server/security/advisories/GHSA-jxxm-27vp-c3m5",
          "url": "https://github.com/nats-io/nats-server/security/advisories/GHSA-jxxm-27vp-c3m5"
        }
      ],
      "release_date": "2026-03-25T19:43:40.969000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "nats-server: github.com/nats-io/nats-server: NATS-Server: Access control bypass via unapplied ACLs in MQTT namespace"
    },
    {
      "cve": "CVE-2026-33218",
      "cwe": {
        "id": "CWE-1286",
        "name": "Improper Validation of Syntactic Correctness of Input"
      },
      "discovery_date": "2026-03-25T20:02:13.680355+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2451450"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in NATS-Server, a high-performance messaging system. A remote attacker, by connecting to the leafnode port and sending a specially crafted malformed message before authentication, can cause the nats-server to crash. This vulnerability leads to a Denial of Service (DoS), making the server unavailable to legitimate users.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "nats-server: github.com/nats-io/nats-server: NATS-Server: Denial of Service via malformed message pre-authentication on leafnode port",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33218"
        },
        {
          "category": "external",
          "summary": "RHBZ#2451450",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451450"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33218",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33218"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33218",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33218"
        },
        {
          "category": "external",
          "summary": "https://advisories.nats.io/CVE/secnote-2026-10.txt",
          "url": "https://advisories.nats.io/CVE/secnote-2026-10.txt"
        },
        {
          "category": "external",
          "summary": "https://github.com/nats-io/nats-server/security/advisories/GHSA-vprv-35vv-q339",
          "url": "https://github.com/nats-io/nats-server/security/advisories/GHSA-vprv-35vv-q339"
        }
      ],
      "release_date": "2026-03-25T19:53:12.075000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "nats-server: github.com/nats-io/nats-server: NATS-Server: Denial of Service via malformed message pre-authentication on leafnode port"
    },
    {
      "cve": "CVE-2026-33219",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2026-03-25T20:01:41.235854+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2451445"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in NATS-Server. A malicious client connecting to the WebSockets port can cause unbounded memory use before authentication by sending a large amount of data. This resource exhaustion vulnerability can lead to a Denial of Service (DoS) for the server, making it unavailable to legitimate users.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "github.com/nats-io/nats-server: NATS-Server: Denial of Service via unbounded memory use in WebSockets",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33219"
        },
        {
          "category": "external",
          "summary": "RHBZ#2451445",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451445"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33219",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33219"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33219",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33219"
        },
        {
          "category": "external",
          "summary": "https://advisories.nats.io/CVE/secnote-2026-02.txt",
          "url": "https://advisories.nats.io/CVE/secnote-2026-02.txt"
        },
        {
          "category": "external",
          "summary": "https://advisories.nats.io/CVE/secnote-2026-11.txt",
          "url": "https://advisories.nats.io/CVE/secnote-2026-11.txt"
        },
        {
          "category": "external",
          "summary": "https://github.com/advisories/GHSA-qrvq-68c2-7grw",
          "url": "https://github.com/advisories/GHSA-qrvq-68c2-7grw"
        },
        {
          "category": "external",
          "summary": "https://github.com/nats-io/nats-server/security/advisories/GHSA-8r68-gvr4-jh7j",
          "url": "https://github.com/nats-io/nats-server/security/advisories/GHSA-8r68-gvr4-jh7j"
        }
      ],
      "release_date": "2026-03-25T19:55:28.363000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "github.com/nats-io/nats-server: NATS-Server: Denial of Service via unbounded memory use in WebSockets"
    },
    {
      "cve": "CVE-2026-33247",
      "cwe": {
        "id": "CWE-214",
        "name": "Invocation of Process Using Visible Sensitive Information"
      },
      "discovery_date": "2026-03-25T21:02:07.985713+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2451486"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in NATS-Server. If the NATS-Server is configured with static credentials provided through command-line arguments (argv) and the monitoring port is enabled, a remote attacker with access to the monitoring port can view these credentials. The /debug/vars endpoint on the monitoring port exposes an unredacted copy of the command-line arguments, leading to information disclosure of sensitive authentication details.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "github.com/nats-io/nats-server: NATS-Server: Information disclosure of credentials via monitoring port and command-line arguments",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33247"
        },
        {
          "category": "external",
          "summary": "RHBZ#2451486",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451486"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33247",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33247"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33247",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33247"
        },
        {
          "category": "external",
          "summary": "https://advisories.nats.io/CVE/secnote-2026-14.txt",
          "url": "https://advisories.nats.io/CVE/secnote-2026-14.txt"
        },
        {
          "category": "external",
          "summary": "https://github.com/nats-io/nats-server/security/advisories/GHSA-x6g4-f6q3-fqvv",
          "url": "https://github.com/nats-io/nats-server/security/advisories/GHSA-x6g4-f6q3-fqvv"
        }
      ],
      "release_date": "2026-03-25T20:02:18.868000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "github.com/nats-io/nats-server: NATS-Server: Information disclosure of credentials via monitoring port and command-line arguments"
    },
    {
      "cve": "CVE-2026-33413",
      "cwe": {
        "id": "CWE-306",
        "name": "Missing Authentication for Critical Function"
      },
      "discovery_date": "2026-03-26T14:03:01.896580+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2451728"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in etcd, a distributed key-value store. Unauthorized users can bypass authentication or authorization checks when the gRPC API is exposed to untrusted clients. This allows them to access sensitive cluster topology information, disrupt operations through alarms, interfere with lease management, and trigger data compaction, leading to permanent data loss and disruption of critical workflows. This vulnerability can result in information disclosure and denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "etcd: etcd: Authorization bypass allows information disclosure and denial of service",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This flaw in etcd allows unauthorized users to bypass authentication or authorization checks when the gRPC API is exposed to untrusted clients and etcd\u0027s built-in authentication is enabled. This can lead to information disclosure and denial of service. Typical Red Hat OpenShift Container Platform and Kubernetes deployments are not affected, as the Kubernetes API server handles authentication and authorization independently of etcd\u0027s internal mechanisms.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33413"
        },
        {
          "category": "external",
          "summary": "RHBZ#2451728",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451728"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33413",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33413"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33413",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33413"
        },
        {
          "category": "external",
          "summary": "https://github.com/etcd-io/etcd/security/advisories/GHSA-q8m4-xhhv-38mg",
          "url": "https://github.com/etcd-io/etcd/security/advisories/GHSA-q8m4-xhhv-38mg"
        }
      ],
      "release_date": "2026-03-26T13:36:10.919000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        },
        {
          "category": "workaround",
          "details": "Restrict network access to etcd server ports to ensure only trusted components can establish connections. Implement strong client identity at the transport layer, such as mTLS, with tightly scoped client certificate distribution. This will limit unauthorized access to etcd functions.",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.7,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "etcd: etcd: Authorization bypass allows information disclosure and denial of service"
    },
    {
      "cve": "CVE-2026-33487",
      "cwe": {
        "id": "CWE-347",
        "name": "Improper Verification of Cryptographic Signature"
      },
      "discovery_date": "2026-03-26T18:02:32.278778+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2451814"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in goxmlsig, a Go library for XML Digital Signatures. This vulnerability arises from a programming error, specifically a loop variable capture issue, within the `validateSignature` function. When processing XML Digital Signatures, this error can cause the system to incorrectly validate the signature, potentially allowing an attacker to bypass integrity checks. This issue affects Go versions before 1.22 or projects using older `go.mod` configurations.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "github.com/russellhaering/goxmldsig: goxmlsig: Integrity bypass due to incorrect XML Digital Signature validation via loop variable capture issue",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33487"
        },
        {
          "category": "external",
          "summary": "RHBZ#2451814",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451814"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33487",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33487"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33487",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33487"
        },
        {
          "category": "external",
          "summary": "https://github.com/russellhaering/goxmldsig/security/advisories/GHSA-479m-364c-43vc",
          "url": "https://github.com/russellhaering/goxmldsig/security/advisories/GHSA-479m-364c-43vc"
        }
      ],
      "release_date": "2026-03-26T17:17:51.101000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "github.com/russellhaering/goxmldsig: goxmlsig: Integrity bypass due to incorrect XML Digital Signature validation via loop variable capture issue"
    },
    {
      "cve": "CVE-2026-33810",
      "cwe": {
        "id": "CWE-1289",
        "name": "Improper Validation of Unsafe Equivalence in Input"
      },
      "discovery_date": "2026-04-08T02:01:09.100830+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456335"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456335",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456335"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33810",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/763763",
          "url": "https://go.dev/cl/763763"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78332",
          "url": "https://go.dev/issue/78332"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4866",
          "url": "https://pkg.go.dev/vuln/GO-2026-4866"
        }
      ],
      "release_date": "2026-04-08T01:06:56.546000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application"
    },
    {
      "cve": "CVE-2026-33813",
      "cwe": {
        "id": "CWE-190",
        "name": "Integer Overflow or Wraparound"
      },
      "discovery_date": "2026-04-21T20:01:02.224363+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2460221"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in golang.org/x/image. A remote attacker could exploit this vulnerability by providing a specially crafted WEBP image with an invalid, large size. This could cause the application to panic and crash on 32-bit platforms, leading to a Denial of Service (DoS).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang.org/x/image: golang: golang.org/x/image: Denial of Service via malformed WEBP image parsing",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33813"
        },
        {
          "category": "external",
          "summary": "RHBZ#2460221",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460221"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33813",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33813"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33813",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33813"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/759860",
          "url": "https://go.dev/cl/759860"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78407",
          "url": "https://go.dev/issue/78407"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4961",
          "url": "https://pkg.go.dev/vuln/GO-2026-4961"
        }
      ],
      "release_date": "2026-04-21T19:21:27.644000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang.org/x/image: golang: golang.org/x/image: Denial of Service via malformed WEBP image parsing"
    },
    {
      "cve": "CVE-2026-33997",
      "cwe": {
        "id": "CWE-266",
        "name": "Incorrect Privilege Assignment"
      },
      "discovery_date": "2026-03-31T03:01:29.529297+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2453277"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Moby, an open-source container framework. This vulnerability allows for a privilege validation bypass during `docker plugin install`. Due to an error in the daemon\u0027s privilege comparison logic, the system may incorrectly accept a plugin\u0027s requested privileges that differ from those approved by the user. This could lead to unauthorized privilege escalation for installed plugins.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "moby: docker: github.com/moby/moby: Moby: Privilege validation bypass during plugin installation",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "An important flaw in Moby, an open-source container framework, allows for a privilege validation bypass during `docker plugin install`. This issue stems from an error in the daemon\u0027s privilege comparison logic, which could lead to unauthorized privilege escalation for installed plugins. Red Hat products that leverage Moby and allow Docker plugin installation are affected.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33997"
        },
        {
          "category": "external",
          "summary": "RHBZ#2453277",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2453277"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33997",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33997"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33997",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33997"
        },
        {
          "category": "external",
          "summary": "https://github.com/moby/moby/releases/tag/docker-v29.3.1",
          "url": "https://github.com/moby/moby/releases/tag/docker-v29.3.1"
        },
        {
          "category": "external",
          "summary": "https://github.com/moby/moby/security/advisories/GHSA-pxq6-2prw-chj9",
          "url": "https://github.com/moby/moby/security/advisories/GHSA-pxq6-2prw-chj9"
        }
      ],
      "release_date": "2026-03-31T01:36:51.404000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "moby: docker: github.com/moby/moby: Moby: Privilege validation bypass during plugin installation"
    },
    {
      "cve": "CVE-2026-34040",
      "cwe": {
        "id": "CWE-807",
        "name": "Reliance on Untrusted Inputs in a Security Decision"
      },
      "discovery_date": "2026-03-31T03:01:34.530713+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2453278"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Moby, an open-source container framework. This security vulnerability allows attackers to bypass authorization plugins (AuthZ), which are mechanisms designed to control access and permissions within the container environment. The bypass of these plugins can lead to unauthorized operations and potential compromise of the system\u0027s integrity and confidentiality.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Moby: Moby: Authorization bypass vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-34040"
        },
        {
          "category": "external",
          "summary": "RHBZ#2453278",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2453278"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-34040",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-34040"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-34040",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34040"
        },
        {
          "category": "external",
          "summary": "https://github.com/moby/moby/releases/tag/docker-v29.3.1",
          "url": "https://github.com/moby/moby/releases/tag/docker-v29.3.1"
        },
        {
          "category": "external",
          "summary": "https://github.com/moby/moby/security/advisories/GHSA-x744-4wpc-v9h2",
          "url": "https://github.com/moby/moby/security/advisories/GHSA-x744-4wpc-v9h2"
        }
      ],
      "release_date": "2026-03-31T01:36:48.205000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "Moby: Moby: Authorization bypass vulnerability"
    },
    {
      "cve": "CVE-2026-34986",
      "cwe": {
        "id": "CWE-131",
        "name": "Incorrect Calculation of Buffer Size"
      },
      "discovery_date": "2026-04-06T17:01:34.639203+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2455470"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-34986"
        },
        {
          "category": "external",
          "summary": "RHBZ#2455470",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455470"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-34986",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-34986"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986"
        },
        {
          "category": "external",
          "summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8",
          "url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants",
          "url": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants"
        }
      ],
      "release_date": "2026-04-06T16:22:45.353000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object"
    },
    {
      "cve": "CVE-2026-40890",
      "cwe": {
        "id": "CWE-1286",
        "name": "Improper Validation of Syntactic Correctness of Input"
      },
      "discovery_date": "2026-04-21T20:02:56.729456+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2460245"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in github.com/gomarkdown/markdown, a Go library for parsing Markdown text and rendering as HTML. A remote attacker could exploit this vulnerability by providing a specially crafted malformed input. Specifically, input containing a \u0027\u003c\u0027 character not followed by a \u0027\u003e\u0027 character, when processed by the SmartypantsRenderer, can lead to an out-of-bounds read or a panic. This can result in a denial of service (DoS) for the application, making it unavailable to legitimate users.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "github.com/gomarkdown/markdown: github.com/gomarkdown/markdown: Denial of Service via malformed Markdown input",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This is an Important denial of service flaw affecting Red Hat products that utilize the `github.com/gomarkdown/markdown` library. The vulnerability occurs when the `SmartypantsRenderer` processes specially crafted malformed Markdown input containing an unclosed \u0027\u003c\u0027 character, leading to an out-of-bounds read or application panic. A successful exploitation may lead the application using the library unavailable.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-40890"
        },
        {
          "category": "external",
          "summary": "RHBZ#2460245",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460245"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-40890",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-40890"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-40890",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-40890"
        },
        {
          "category": "external",
          "summary": "https://github.com/gomarkdown/markdown/commit/759bbc3e32073c3bc4e25969c132fc520eda2778",
          "url": "https://github.com/gomarkdown/markdown/commit/759bbc3e32073c3bc4e25969c132fc520eda2778"
        },
        {
          "category": "external",
          "summary": "https://github.com/gomarkdown/markdown/security/advisories/GHSA-77fj-vx54-gvh7",
          "url": "https://github.com/gomarkdown/markdown/security/advisories/GHSA-77fj-vx54-gvh7"
        }
      ],
      "release_date": "2026-04-21T19:51:53.237000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "github.com/gomarkdown/markdown: github.com/gomarkdown/markdown: Denial of Service via malformed Markdown input"
    },
    {
      "cve": "CVE-2026-41602",
      "cwe": {
        "id": "CWE-190",
        "name": "Integer Overflow or Wraparound"
      },
      "discovery_date": "2026-04-28T10:01:16.099816+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2463407"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the Apache Thrift TFramedTransport Go language implementation. This integer overflow or wraparound vulnerability could potentially allow an attacker to cause unexpected behavior or resource exhaustion, leading to a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "github.com/apache/thrift: Apache Thrift: Integer Overflow in TFramedTransport Go implementation",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-41602"
        },
        {
          "category": "external",
          "summary": "RHBZ#2463407",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2463407"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-41602",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-41602"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-41602",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-41602"
        },
        {
          "category": "external",
          "summary": "http://www.openwall.com/lists/oss-security/2026/04/28/6",
          "url": "http://www.openwall.com/lists/oss-security/2026/04/28/6"
        },
        {
          "category": "external",
          "summary": "https://lists.apache.org/thread/lb4j0zyd5f3g36cos0wql925przpnwql",
          "url": "https://lists.apache.org/thread/lb4j0zyd5f3g36cos0wql925przpnwql"
        }
      ],
      "release_date": "2026-04-28T09:19:06.646000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "github.com/apache/thrift: Apache Thrift: Integer Overflow in TFramedTransport Go implementation"
    },
    {
      "cve": "CVE-2026-41603",
      "cwe": {
        "id": "CWE-295",
        "name": "Improper Certificate Validation"
      },
      "discovery_date": "2026-04-28T10:01:29.782287+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2463411"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Apache Thrift. This vulnerability involves improper validation of server certificates, where the hostname presented in the certificate does not match the expected hostname. A remote attacker could exploit this to impersonate a legitimate server, potentially intercepting or altering sensitive communications and leading to unauthorized access or information disclosure.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Apache Thrift: apache.com/apache/thrift: Apache Thrift: Security Bypass via Improper Certificate Hostname Validation",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-41603"
        },
        {
          "category": "external",
          "summary": "RHBZ#2463411",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2463411"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-41603",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-41603"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-41603",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-41603"
        },
        {
          "category": "external",
          "summary": "http://www.openwall.com/lists/oss-security/2026/04/28/7",
          "url": "http://www.openwall.com/lists/oss-security/2026/04/28/7"
        },
        {
          "category": "external",
          "summary": "https://lists.apache.org/thread/lb4j0zyd5f3g36cos0wql925przpnwql",
          "url": "https://lists.apache.org/thread/lb4j0zyd5f3g36cos0wql925przpnwql"
        }
      ],
      "release_date": "2026-04-28T09:19:40.564000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "Apache Thrift: apache.com/apache/thrift: Apache Thrift: Security Bypass via Improper Certificate Hostname Validation"
    },
    {
      "cve": "CVE-2026-41604",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2026-04-28T10:01:47.903741+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2463416"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Apache Thrift. This out-of-bounds read vulnerability could allow an attacker to access memory outside of allocated bounds. This could lead to information disclosure or potentially a denial of service (DoS) condition.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Apache Thrift: apache.com/apache/thrift: Apache Thrift: Out-of-bounds Read vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-41604"
        },
        {
          "category": "external",
          "summary": "RHBZ#2463416",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2463416"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-41604",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-41604"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-41604",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-41604"
        },
        {
          "category": "external",
          "summary": "http://www.openwall.com/lists/oss-security/2026/04/28/5",
          "url": "http://www.openwall.com/lists/oss-security/2026/04/28/5"
        },
        {
          "category": "external",
          "summary": "https://lists.apache.org/thread/lb4j0zyd5f3g36cos0wql925przpnwql",
          "url": "https://lists.apache.org/thread/lb4j0zyd5f3g36cos0wql925przpnwql"
        }
      ],
      "release_date": "2026-04-28T09:20:13.996000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "Apache Thrift: apache.com/apache/thrift: Apache Thrift: Out-of-bounds Read vulnerability"
    },
    {
      "cve": "CVE-2026-41605",
      "cwe": {
        "id": "CWE-190",
        "name": "Integer Overflow or Wraparound"
      },
      "discovery_date": "2026-04-28T10:01:54.269412+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2463418"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Apache Thrift. This integer overflow or wraparound vulnerability could potentially lead to unexpected behavior or resource exhaustion, which may impact the availability or integrity of the system. The exact consequences depend on how the overflow is triggered and handled within the application.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Apache Thrift: Apache Thrift: Integer Overflow or Wraparound Vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-41605"
        },
        {
          "category": "external",
          "summary": "RHBZ#2463418",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2463418"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-41605",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-41605"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-41605",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-41605"
        },
        {
          "category": "external",
          "summary": "http://www.openwall.com/lists/oss-security/2026/04/28/4",
          "url": "http://www.openwall.com/lists/oss-security/2026/04/28/4"
        },
        {
          "category": "external",
          "summary": "https://lists.apache.org/thread/lb4j0zyd5f3g36cos0wql925przpnwql",
          "url": "https://lists.apache.org/thread/lb4j0zyd5f3g36cos0wql925przpnwql"
        }
      ],
      "release_date": "2026-04-28T09:20:44.319000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.7,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "Apache Thrift: Apache Thrift: Integer Overflow or Wraparound Vulnerability"
    },
    {
      "cve": "CVE-2026-41606",
      "cwe": {
        "id": "CWE-606",
        "name": "Unchecked Input for Loop Condition"
      },
      "discovery_date": "2026-04-28T10:01:19.136351+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2463408"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Apache Thrift. An uncontrolled recursion vulnerability exists, which could allow a remote attacker to trigger a Denial of Service (DoS) condition. This occurs when the affected component processes specially crafted input, leading to excessive resource consumption and system unavailability.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Apache Thrift: Apache Thrift: Denial of Service via uncontrolled recursion",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-41606"
        },
        {
          "category": "external",
          "summary": "RHBZ#2463408",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2463408"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-41606",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-41606"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-41606",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-41606"
        },
        {
          "category": "external",
          "summary": "http://www.openwall.com/lists/oss-security/2026/04/28/3",
          "url": "http://www.openwall.com/lists/oss-security/2026/04/28/3"
        },
        {
          "category": "external",
          "summary": "https://lists.apache.org/thread/lb4j0zyd5f3g36cos0wql925przpnwql",
          "url": "https://lists.apache.org/thread/lb4j0zyd5f3g36cos0wql925przpnwql"
        }
      ],
      "release_date": "2026-04-28T09:21:12.815000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "Apache Thrift: Apache Thrift: Denial of Service via uncontrolled recursion"
    },
    {
      "cve": "CVE-2026-41607",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "discovery_date": "2026-04-28T10:01:33.022623+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2463412"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Apache Thrift. This out-of-bounds read vulnerability can lead to the disclosure of sensitive information or a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Apache Thrift: apache.com/apache/thrift: Apache Thrift: Out-of-bounds Read vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-41607"
        },
        {
          "category": "external",
          "summary": "RHBZ#2463412",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2463412"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-41607",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-41607"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-41607",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-41607"
        },
        {
          "category": "external",
          "summary": "http://www.openwall.com/lists/oss-security/2026/04/28/2",
          "url": "http://www.openwall.com/lists/oss-security/2026/04/28/2"
        },
        {
          "category": "external",
          "summary": "https://lists.apache.org/thread/lb4j0zyd5f3g36cos0wql925przpnwql",
          "url": "https://lists.apache.org/thread/lb4j0zyd5f3g36cos0wql925przpnwql"
        }
      ],
      "release_date": "2026-04-28T09:21:48.502000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.1,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "Apache Thrift: apache.com/apache/thrift: Apache Thrift: Out-of-bounds Read vulnerability"
    },
    {
      "cve": "CVE-2026-41636",
      "cwe": {
        "id": "CWE-776",
        "name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
      },
      "discovery_date": "2026-04-28T10:01:03.992199+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2463404"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Uncontrolled Recursion vulnerability in Apache Thrift Node.js bindings\n\nThis issue affects Apache Thrift: before 0.23.0.\n\nUsers are recommended to upgrade to version 0.23.0, which fixes the issue.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "apache.com/apache/thrift: Apache Thrift: Node.js skip() recursion",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-41636"
        },
        {
          "category": "external",
          "summary": "RHBZ#2463404",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2463404"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-41636",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-41636"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-41636",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-41636"
        },
        {
          "category": "external",
          "summary": "http://www.openwall.com/lists/oss-security/2026/04/28/1",
          "url": "http://www.openwall.com/lists/oss-security/2026/04/28/1"
        },
        {
          "category": "external",
          "summary": "https://lists.apache.org/thread/lb4j0zyd5f3g36cos0wql925przpnwql",
          "url": "https://lists.apache.org/thread/lb4j0zyd5f3g36cos0wql925przpnwql"
        }
      ],
      "release_date": "2026-04-28T09:22:14.639000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "apache.com/apache/thrift: Apache Thrift: Node.js skip() recursion"
    },
    {
      "cve": "CVE-2026-43869",
      "cwe": {
        "id": "CWE-295",
        "name": "Improper Certificate Validation"
      },
      "discovery_date": "2026-05-05T08:00:56.417384+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2466660"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Apache Thrift. This vulnerability involves improper validation of a certificate with a host mismatch, which could allow a remote attacker to bypass security checks. By presenting a specially crafted certificate, an attacker may impersonate a legitimate server or client. This could lead to a security bypass, potentially enabling unauthorized access or information disclosure.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Apache Thrift: Apache Thrift: Security bypass due to improper certificate validation",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
        ],
        "known_not_affected": [
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
          "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-43869"
        },
        {
          "category": "external",
          "summary": "RHBZ#2466660",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466660"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-43869",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-43869"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-43869",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-43869"
        },
        {
          "category": "external",
          "summary": "https://lists.apache.org/thread/3hsgl1b69wzq3ry39scqbv2dhyl3j52r",
          "url": "https://lists.apache.org/thread/3hsgl1b69wzq3ry39scqbv2dhyl3j52r"
        }
      ],
      "release_date": "2026-05-05T07:25:48.611000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T20:39:36+00:00",
          "details": "For more details, see the Red Hat Advanced Cluster Management for Kubernetes documentation:\n\nhttps://docs.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.14/html/multicluster_global_hub/index",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21769"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
          "product_ids": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:62b308e48b973c04509efc66de4cdf11acc729625b75f86bab27de82a7230d14_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:dc3c1cc6bdfbf29bf0182bacddcdde3de8517d294ca4f1516eda60f760ffe399_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:df44aad9c2e9fec1d734e494c069cb89fd7b8f33050cfe9db3bdaef4c4ad7cc3_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-agent-rhel9@sha256:fb7cd20d1a90d19fcaddfffd01a94e39dbcc9c97fc9a70e5d7eaefc570fd2dd7_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:8c03495da4214e70589e238a60815c265223952470da6d80034e2f83de5c3c8e_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:d91359dca7bc04e59f4f1c0d2e5c8a2ecfd92d3499636be065ec89e8ad2eac4f_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:e26dfe26504fa24a04d4e0372461414f6f73c601b7f2f4e7f5e2e520d3281ce8_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-grafana-rhel9@sha256:fc03a86fe38f6d3654c013dd47b330fbd0169f239fb21fd3c456ab78b6df3166_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:19014267212e075c68e50fecbe44eabaaadadae448b28b5cfbe3275f27f9fc93_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:42ab1234414fcdc369097e9c63bda3b4ea64c1e3eb87800a394898c91a2c43ad_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:b70fae10e34ad67aa1f347d2e1085a92e1a28666faa273fe3c0c01a4d0780777_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-manager-rhel9@sha256:bb02a2e251f898e1d34b6846001d13cc1e5454b071358556a77997f02f71401d_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-operator-bundle@sha256:8959841bd45bb6a15ae4a88d37234b3ba36855be6d92e358fa363c6132ab6359_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:33a5f0de8fa49bd67233f9dc5f4f5858858961ecb3da4bcc5c146ce5be91bcd6_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:6b9b507650bf0997ed9828b3d0b69777805aa33dd5b2988a2ef5b3b2bee00dbc_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:74635c357ec4a8697076f015ac15853ee0259e0231620fa349d687be261beae4_arm64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-postgres-exporter-rhel9@sha256:eaae81482b89e7331d356ddadf8f698e5cfffc9ce4fb616f240f30c9f044ba59_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:176cfe7106e81ff28564ec2cf9e4041d0fcadc7b5ae7537a9cc6db63a8914e5c_s390x",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:48717ee862e1386928c2a20a3ed04464ad1fc3d519ef026a6fd615c13e22d51b_amd64",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:c985ba79e21f5c623fa1b350963d6a8915043e06184cde6f2d813a5c349a4886_ppc64le",
            "Multicluster Global Hub 1.5.4:registry.redhat.io/multicluster-globalhub/multicluster-globalhub-rhel9-operator@sha256:cffac2b05af519fbd27143d59321675ba8cfd2e4c1531fc15021bd8500987c62_arm64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "Apache Thrift: Apache Thrift: Security bypass due to improper certificate validation"
    }
  ]
}

RHSA-2026:21772

Vulnerability from csaf_redhat - Published: 2026-05-28 21:29 - Updated: 2026-06-08 07:28

Summary

Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.28.0 Release.

Severity

Important

Notes

Topic: Red Hat OpenShift Dev Spaces 3.28.0 has been released.

Details: Red Hat OpenShift Dev Spaces provides a cloud developer workspace server and a browser-based IDE built for teams and organizations. Dev Spaces runs in OpenShift and is well-suited for container-based development. The 3.28 release is based on Eclipse Che 7.117 and uses the DevWorkspace engine to provide support for workspaces based on devfile v2.1 and v2.2. Users still using the v1 standard should migrate as soon as possible. https://devfile.io/docs/2.2.0/migrating-to-devfile-v2 Dev Spaces supports OpenShift EUS releases v4.16 and higher. Users are expected to update to supported OpenShift releases in order to continue to get Dev Spaces updates. https://access.redhat.com/support/policy/updates/openshift#crw

CVE-2025-14813

A flaw was found in Legion of the Bouncy Castle Inc. BC-JAVA bcprov. The `GOSTCTR` implementation is unable to securely process more than 255 blocks of data due to keystream reuse. This issue allows an attacker to break the fundamental confidentiality of any data protected by the `G3413CTRBlockCipher`, potentially leading to the recovery and access of encrypted data.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE-327 - Use of a Broken or Risky Cryptographic Algorithm

Affected products

Fixed 8 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le	—	Vendor Fix fix Workaround

Known not affected 53 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64	—	Workaround

Threats

Impact Important

CVE-2025-68121

A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.

7.4 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64	—	Vendor Fix fix

Known not affected 57 products

Product	Identifier	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64		—

Threats

Impact Moderate

CVE-2026-0636

A flaw was found in Legion of the Bouncy Castle Inc. BC-JAVA bcprov. The `LDAPStoreHelper` implementation fails to properly neutralize special elements in user-supplied input before incorporating them into LDAP queries. This allows a remote attacker to execute an LDAP injection attack by supplying crafted input, potentially leading to disclosure of sensitive information or the manipulation of directory search queries.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

CWE-90 - Improper Neutralization of Special Elements used in an LDAP Query ('LDAP Injection')

Affected products

Fixed 8 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le	—	Vendor Fix fix Workaround

Known not affected 53 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64	—	Workaround

Threats

Impact Important

CVE-2026-1525

A flaw was found in undici, a Node.js HTTP/1.1 client. A remote attacker could exploit this vulnerability by sending HTTP/1.1 requests that include duplicate Content-Length headers with different casing (e.g., "Content-Length" and "content-length"). This can lead to HTTP Request Smuggling, a technique where an attacker sends an ambiguous request that is interpreted differently by a proxy and a backend server. Successful exploitation could result in unauthorized access, cache poisoning, or credential hijacking. It may also cause a Denial of Service (DoS) if strict HTTP parsers reject the malformed requests.

7.3 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CWE-444 - Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Vendor Fix fix Workaround

Known not affected 57 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64	—	Workaround

Threats

Impact Moderate

CVE-2026-1526

A flaw was found in undici. A remote attacker can exploit this vulnerability by sending a specially crafted compressed frame, known as a "decompression bomb," during permessage-deflate decompression. The undici WebSocket client does not properly limit the size of decompressed data, leading to unbounded memory consumption. This can cause the Node.js process to exhaust available memory, resulting in a denial of service (DoS) where the process crashes or becomes unresponsive.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Vendor Fix fix Workaround

Known not affected 57 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64	—	Workaround

Threats

Impact Important

CVE-2026-1528

A flaw was found in undici. A remote attacker could exploit this vulnerability by sending a specially crafted WebSocket frame with an extremely large 64-bit length. This causes undici's ByteParser to overflow its internal calculations, leading to an invalid state and a fatal TypeError. The primary consequence is a Denial of Service (DoS), which terminates the process.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-248 - Uncaught Exception

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Vendor Fix fix Workaround

Known not affected 57 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64	—	Workaround

Threats

Impact Important

CVE-2026-1605

A flaw was found in org.eclipse.jetty. A remote attacker can exploit this vulnerability by sending a compressed HTTP request with Content-Encoding: gzip when the server's response is not compressed. This prevents the release of the JDK Inflater, leading to a resource leak. This resource exhaustion can result in a Denial of Service (DoS), making the server unavailable to legitimate users.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-772 - Missing Release of Resource after Effective Lifetime

Affected products

Fixed 8 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le	—	Vendor Fix fix

Known not affected 53 products

Product	Identifier	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64		—

Threats

Impact Important

CVE-2026-2229

A flaw was found in the undici WebSocket client. A remote malicious server can exploit this vulnerability by sending a WebSocket frame with an invalid `server_max_window_bits` parameter within the permessage-deflate extension. This improper validation causes the client's Node.js process to terminate, leading to a denial-of-service (DoS) condition for the client.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-248 - Uncaught Exception

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Vendor Fix fix Workaround

Known not affected 57 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64	—	Workaround

Threats

Impact Important

CVE-2026-2327

A flaw was found in markdown-it. A remote attacker can exploit this Regular Expression Denial of Service (ReDoS) vulnerability by providing a specially crafted input containing a long sequence of asterisk characters followed by a non-matching character to the `linkify` function. This triggers excessive backtracking in the regular expression, leading to a denial-of-service condition.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1333 - Inefficient Regular Expression Complexity

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Vendor Fix fix

Known not affected 57 products

Product	Identifier	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64		—

Threats

Impact Moderate

CVE-2026-5588

A flaw was found in Legion of the Bouncy Castle Inc. BC-JAVA bcpkix. The PKIX draft `CompositeVerifier` implementation improperly accepts an empty signature sequence as a valid cryptographic signature. This issue allows a remote attacker to bypass signature verification mechanisms, potentially compromising the authenticity and integrity of data.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CWE-347 - Improper Verification of Cryptographic Signature

Affected products

Fixed 8 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le	—	Vendor Fix fix Workaround

Known not affected 53 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64	—	Workaround

Threats

Impact Important

CVE-2026-26996

A flaw was found in minimatch. A remote attacker could exploit this Regular Expression Denial of Service (ReDoS) vulnerability by providing a specially crafted glob pattern. This pattern, containing numerous consecutive wildcard characters, causes excessive processing and exponential backtracking in the regular expression engine. Successful exploitation leads to a Denial of Service (DoS), making the application unresponsive.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-1333 - Inefficient Regular Expression Complexity

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Vendor Fix fix

Known not affected 57 products

Product	Identifier	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64		—

Threats

Impact Moderate

CVE-2026-27904

A flaw was found in minimatch. A remote attacker could exploit this vulnerability by providing a specially crafted glob expression with nested unbounded quantifiers. This could lead to catastrophic backtracking in the V8 JavaScript engine, causing the application to become unresponsive and resulting in a Denial of Service (DoS).

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE-1333 - Inefficient Regular Expression Complexity

Affected products

Fixed 8 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Vendor Fix fix

Known not affected 53 products

Product	Identifier	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64		—

Threats

Impact Moderate

CVE-2026-29074

A flaw was found in SVGO, an SVG (Scalable Vector Graphics) Optimizer. This vulnerability allows a remote attacker to cause a Denial of Service (DoS) by submitting a specially crafted XML file. The application's failure to properly guard against XML entity expansion or recursion can lead to the Node.js process consuming excessive memory and crashing.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-776 - Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion')

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Vendor Fix fix Workaround

Known not affected 57 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64	—	Workaround

Threats

Impact Important

CVE-2026-30827

A flaw was found in express-rate-limit. The default key generator incorrectly applies IPv6 subnet masking to IPv4-mapped IPv6 addresses, which are used when an IPv4 client connects to a dual-stack server. This misconfiguration causes all IPv4 traffic to be treated as a single entity for rate limiting. Consequently, a remote attacker can exhaust the rate limit with a single client, leading to a Denial of Service (DoS) for all other IPv4 clients by causing them to receive HTTP 429 errors.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1389 - Incorrect Parsing of Numbers with Different Radices

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Vendor Fix fix Workaround

Known not affected 57 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64	—	Workaround

Threats

Impact Moderate

CVE-2026-31802

A flaw was found in tar. An attacker can exploit this vulnerability by crafting a malicious tar archive containing a drive-relative symlink. This symlink, such as C:../../../target.txt, can trick the tar utility into writing files outside the intended extraction directory during normal archive extraction, leading to unauthorized file overwrite.

6.2 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Affected products

Fixed 8 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Vendor Fix fix

Known not affected 53 products

Product	Identifier	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64		—

Threats

Impact Moderate

CVE-2026-32141

A denial of service flaw has been discovered in the flatted npm library. flatted's parse() function uses a recursive revive() phase to resolve circular references in deserialized JSON. When given a crafted payload with deeply nested or self-referential $ indices, the recursion depth is unbounded, causing a stack overflow that crashes the Node.js process.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Vendor Fix fix Workaround

Known not affected 57 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64	—	Workaround

Threats

Impact Important

CVE-2026-32280

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64	—	Vendor Fix fix

Known not affected 57 products

Product	Identifier	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64		—

Threats

Impact Important

CVE-2026-32282

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

CWE-367 - Time-of-check Time-of-use (TOCTOU) Race Condition

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64	—	Vendor Fix fix Workaround

Known not affected 57 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64	—	Workaround

Threats

Impact Moderate

CVE-2026-32305

A flaw was found in Traefik, an HTTP reverse proxy and load balancer. A remote attacker can exploit this vulnerability by sending fragmented ClientHello packets during the Transport Layer Security (TLS) handshake. This causes Traefik's Server Name Indication (SNI) extraction to fail, leading to a fallback to a default TLS configuration that does not require client certificates. This allows an attacker to bypass mutual TLS (mTLS) authentication, gaining unauthorized access to services that should be protected by client certificate requirements.

8.3 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L

CWE-179 - Incorrect Behavior Order: Early Validation

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64	—	Vendor Fix fix Workaround

Known not affected 57 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64	—	Workaround

Threats

Impact Important

CVE-2026-33252

A flaw was found in the Go MCP SDK's Streamable HTTP transport, which uses Go's standard `encoding/json` package. In deployments without authorization, a remote attacker can exploit this Cross-Site Request Forgery (CSRF) vulnerability. By sending browser-generated cross-site `POST` requests to a local server without proper validation of the `Origin` header or `Content-Type`, an attacker can potentially trigger unauthorized tool execution.

7.1 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:L

CWE-940 - Improper Verification of Source of a Communication Channel

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64	—	Vendor Fix fix Workaround

Known not affected 57 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64	—	Workaround

Threats

Impact Moderate

CVE-2026-33810

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L

CWE-1289 - Improper Validation of Unsafe Equivalence in Input

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64	—	Vendor Fix fix

Known not affected 57 products

Product	Identifier	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64		—

Threats

Impact Important

CVE-2026-34742

A flaw was found in the Model Context Protocol (MCP) Go SDK. When an HTTP-based MCP server is run on localhost without authentication, a malicious website can exploit a DNS rebinding vulnerability. This allows the attacker to bypass same-origin policy restrictions and send requests to the local MCP server. Consequently, an attacker could invoke tools or access resources exposed by the MCP server on behalf of the user.

8.0 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N

CWE-1188 - Initialization of a Resource with an Insecure Default

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64	—	Vendor Fix fix Workaround

Known not affected 57 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64	—	Workaround

Threats

Impact Important

CVE-2026-35051

A flaw was found in Traefik, an HTTP reverse proxy and load balancer. This authentication bypass vulnerability exists in Traefik's ForwardAuth middleware when the `trustForwardHeader` setting is configured as `false` and Traefik is deployed behind a trusted upstream proxy. A remote attacker could exploit this to bypass authentication, potentially gaining unauthorized access to protected resources.

8.2 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

CWE-501 - Trust Boundary Violation

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64	—	Vendor Fix fix Workaround

Known not affected 57 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64	—	Workaround

Threats

Impact Important

CVE-2026-39858

A flaw was found in Traefik. A remote attacker can exploit an authentication bypass vulnerability by injecting spoofed trust context through unsanitized alias headers. This is due to Traefik's forwarded-header sanitization logic not properly handling alias header names that use underscores instead of dashes. This allows an attacker to bypass authentication on protected routes without valid credentials.

8.2 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

CWE-289 - Authentication Bypass by Alternate Name

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64	—	Vendor Fix fix Workaround

Known not affected 57 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64	—	Workaround

Threats

Impact Important

CVE-2026-40477

A flaw was found in Thymeleaf, a server-side Java template engine. An unauthenticated remote attacker can exploit a security bypass vulnerability in the expression execution mechanisms. By providing unvalidated user input directly to the template engine, the attacker can bypass the library's protections, leading to Server-Side Template Injection (SSTI). This allows access to potentially sensitive objects from within a template.

8.5 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

CWE-917 - Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')

Affected products

Fixed 8 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le	—	Vendor Fix fix Workaround

Known not affected 53 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64	—	Workaround

Threats

Impact Important

CVE-2026-40478

A flaw was found in Thymeleaf, a server-side Java template engine. An unauthenticated remote attacker can exploit this vulnerability by providing unvalidated user input to the template engine. This bypasses existing security mechanisms, allowing for the execution of unauthorized expressions and leading to Server-Side Template Injection (SSTI).

8.5 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

CWE-917 - Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')

Affected products

Fixed 8 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le	—	Vendor Fix fix Workaround

Known not affected 53 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64	—	Workaround

Threats

Impact Important

CVE-2026-40611

A flaw was found in lego, the Let's Encrypt client and ACME library written in Go. A malicious ACME (Automated Certificate Management Environment) server can exploit a path traversal vulnerability in the webroot HTTP-01 challenge provider. By supplying a specially crafted challenge token containing directory traversal sequences, the server can cause lego to write or delete files in arbitrary locations on the system where lego is running, potentially leading to system compromise.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64	—	Vendor Fix fix Workaround

Known not affected 57 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64	—	Workaround

Threats

Impact Important

CVE-2026-40895

A flaw was found in follow-redirects. When an HTTP request follows a cross-domain redirect (a redirection to a different domain), custom authentication headers, such as X-API-Key or X-Auth-Token, are not properly stripped. This allows these sensitive headers to be forwarded verbatim to the redirect target, potentially leading to the unintended disclosure of authentication information to an untrusted third party.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE-212 - Improper Removal of Sensitive Information Before Storage or Transfer

Affected products

Fixed 16 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le	—	Vendor Fix fix

Known not affected 45 products

Product	Identifier	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64		—

Threats

Impact Important

CVE-2026-40912

A flaw was found in Traefik, an HTTP reverse proxy and load balancer. This authentication bypass vulnerability allows an unauthenticated attacker to access protected content. The flaw occurs when the StripPrefixRegex middleware is used with authentication mechanisms such as ForwardAuth, BasicAuth, or DigestAuth. By crafting a specific URL with dot-segments, an attacker can bypass authentication checks and gain unauthorized access to sensitive resources.

8.6 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Affected products

Fixed 4 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64	—	Vendor Fix fix Workaround

Known not affected 57 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64	—	Workaround

Threats

Impact Important

CVE-2026-40972

A flaw was found in Spring Boot. An attacker on the same network as the remote application may be able to utilize a timing attack to discover information about a remote secret. In extreme circumstances, this could allow the attacker to determine the secret and upload changed classes, leading to remote code execution in the remote application.

7.5 (High)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-208 - Observable Timing Discrepancy

Affected products

Fixed 8 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le	—	Vendor Fix fix Workaround

Known not affected 53 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64	—	Workaround

Threats

Impact Moderate

CVE-2026-40973

A flaw was found in Spring Boot. A local attacker on the same host as the application may be able to take control of the `ApplicationTemp` directory due to predictable temporary directory handling. When the `server.servlet.session.persistent` setting is enabled and the attack persists across application restarts, this could allow the attacker to read session information, hijack authenticated user sessions, or execute arbitrary code as the application's user.

7.0 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-341 - Predictable from Observable State

Affected products

Fixed 8 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le	—	Vendor Fix fix Workaround

Known not affected 53 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64	—	Workaround

Threats

Impact Moderate

CVE-2026-40975

A flaw was found in Spring Boot. The `${random.value}` property source utilizes a weak pseudo-random number generator (PRNG), meaning the values it produces are not sufficiently random for use as cryptographic secrets. An attacker could potentially predict these values, which may lead to information disclosure or a security bypass if they are used in sensitive applications.

8.2 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

CWE-338 - Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)

Affected products

Fixed 8 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le	—	Vendor Fix fix Workaround

Known not affected 53 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64	—	Workaround

Threats

Impact Important

CVE-2026-41240

A flaw was found in DOMPurify, a DOM-only cross-site scripting sanitizer. A remote attacker could exploit an inconsistency in how forbidden tags and attributes are handled when function-based tag additions are used. This allows malicious HTML, MathML, or SVG elements to bypass sanitization and execute arbitrary code in the user's browser, leading to Cross-Site Scripting (XSS).

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Affected products

Fixed 8 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Vendor Fix fix Workaround

Known not affected 53 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64	—	Workaround

Threats

Impact Moderate

CVE-2026-42033

A flaw was found in Axios, an HTTP client library. This vulnerability allows an attacker to exploit a prototype pollution issue if another part of the application has already polluted the Object.prototype. By doing so, the attacker can intercept and modify JSON responses or take control of the HTTP communication. This could lead to unauthorized access to sensitive information like user credentials and request details.

7.4 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

CWE-915 - Improperly Controlled Modification of Dynamically-Determined Object Attributes

Affected products

Fixed 8 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Vendor Fix fix

Known not affected 53 products

Product	Identifier	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64		—

Threats

Impact Important

CVE-2026-42035

A flaw was found in Axios, a software library for making network requests. A remote attacker can exploit a prototype pollution vulnerability to inject arbitrary HTTP headers into outgoing requests. This occurs when the application's core object definitions are manipulated, causing Axios to misinterpret data and include attacker-controlled headers in network communications. This could lead to unauthorized actions or data manipulation.

7.4 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

CWE-915 - Improperly Controlled Modification of Dynamically-Determined Object Attributes

Affected products

Fixed 8 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Vendor Fix fix Workaround

Known not affected 53 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64	—	Workaround

Threats

Impact Moderate

CVE-2026-42039

A flaw was found in Axios, a promise-based HTTP client for browsers and Node.js. This vulnerability occurs because the `toFormData` function recursively processes nested objects without a depth limit. A remote attacker can exploit this by sending deeply nested request data, which causes the Node.js process to crash due to a RangeError, leading to a potential Denial of Service (DoS) if the process crashes.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 8 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Vendor Fix fix

Known not affected 53 products

Product	Identifier	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64		—

Threats

Impact Important

CVE-2026-42041

A flaw was found in Axios, a promise-based HTTP client. This vulnerability, a Prototype Pollution "Gadget" attack, allows an attacker to manipulate the `Object.prototype.validateStatus` property. By polluting this property, all HTTP error responses (such as 401, 403, or 500) are silently treated as successful responses. This can lead to a complete bypass of application-level authentication and error handling, potentially granting unauthorized access.

8.2 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N

CWE-915 - Improperly Controlled Modification of Dynamically-Determined Object Attributes

Affected products

Fixed 8 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Vendor Fix fix

Known not affected 53 products

Product	Identifier	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64		—

Threats

Impact Important

CVE-2026-42043

A flaw was found in Axios, a promise-based HTTP client. An attacker who can control the destination address of an Axios request can exploit this vulnerability. By using specific internal network addresses (within the 127.0.0.0/8 range, excluding 127.0.0.1), the attacker can completely bypass the NO_PROXY protection, potentially leading to unauthorized access or information disclosure within the network. This issue is an incomplete fix for a previous vulnerability.

7.2 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

CWE-918 - Server-Side Request Forgery (SSRF)

Affected products

Fixed 8 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Vendor Fix fix
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Vendor Fix fix

Known not affected 53 products

Product	Identifier	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x		—
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64		—

Threats

Impact Important

CVE-2026-42044

A flaw was found in Axios, a widely used HTTP client. This vulnerability, known as a Prototype Pollution "Gadget" attack, allows a remote attacker to subtly alter JSON API responses. By manipulating a specific function, an attacker can selectively modify data within these responses. This could lead to significant security breaches, including unauthorized privilege escalation, fraudulent balance manipulation, or bypassing critical authorization checks.

7.4 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

CWE-915 - Improperly Controlled Modification of Dynamically-Determined Object Attributes

Affected products

Fixed 8 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64	—	Vendor Fix fix Workaround

Known not affected 53 products

Product	Version	Remediation
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x	—	Workaround
Unresolved product id: Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64	—	Workaround

Threats

Impact Important

References

278 references

URL	Category
https://access.redhat.com/errata/RHSA-2026:21772	self
https://access.redhat.com/documentation/en-us/red…	external
https://access.redhat.com/security/cve/CVE-2025-14813	external
https://access.redhat.com/security/cve/CVE-2025-68121	external
https://access.redhat.com/security/cve/CVE-2026-0636	external
https://access.redhat.com/security/cve/CVE-2026-1525	external
https://access.redhat.com/security/cve/CVE-2026-1526	external
https://access.redhat.com/security/cve/CVE-2026-1528	external
https://access.redhat.com/security/cve/CVE-2026-1605	external
https://access.redhat.com/security/cve/CVE-2026-2229	external
https://access.redhat.com/security/cve/CVE-2026-2327	external
https://access.redhat.com/security/cve/CVE-2026-26996	external
https://access.redhat.com/security/cve/CVE-2026-27904	external
https://access.redhat.com/security/cve/CVE-2026-29074	external
https://access.redhat.com/security/cve/CVE-2026-30827	external
https://access.redhat.com/security/cve/CVE-2026-31802	external
https://access.redhat.com/security/cve/CVE-2026-32141	external
https://access.redhat.com/security/cve/CVE-2026-32280	external
https://access.redhat.com/security/cve/CVE-2026-32282	external
https://access.redhat.com/security/cve/CVE-2026-32305	external
https://access.redhat.com/security/cve/CVE-2026-33252	external
https://access.redhat.com/security/cve/CVE-2026-33810	external
https://access.redhat.com/security/cve/CVE-2026-34742	external
https://access.redhat.com/security/cve/CVE-2026-35051	external
https://access.redhat.com/security/cve/CVE-2026-39858	external
https://access.redhat.com/security/cve/CVE-2026-40477	external
https://access.redhat.com/security/cve/CVE-2026-40478	external
https://access.redhat.com/security/cve/CVE-2026-40611	external
https://access.redhat.com/security/cve/CVE-2026-40895	external
https://access.redhat.com/security/cve/CVE-2026-40912	external
https://access.redhat.com/security/cve/CVE-2026-40972	external
https://access.redhat.com/security/cve/CVE-2026-40973	external
https://access.redhat.com/security/cve/CVE-2026-40975	external
https://access.redhat.com/security/cve/CVE-2026-41240	external
https://access.redhat.com/security/cve/CVE-2026-42033	external
https://access.redhat.com/security/cve/CVE-2026-42035	external
https://access.redhat.com/security/cve/CVE-2026-42039	external
https://access.redhat.com/security/cve/CVE-2026-42041	external
https://access.redhat.com/security/cve/CVE-2026-42043	external
https://access.redhat.com/security/cve/CVE-2026-42044	external
https://access.redhat.com/security/cve/CVE-2026-5588	external
https://access.redhat.com/security/updates/classi…	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2025-14813	self
https://bugzilla.redhat.com/show_bug.cgi?id=2458640	external
https://www.cve.org/CVERecord?id=CVE-2025-14813	external
https://nvd.nist.gov/vuln/detail/CVE-2025-14813	external
https://github.com/bcgit/bc-java/wiki/CVE%E2%80%9…	external
https://access.redhat.com/security/cve/CVE-2025-68121	self
https://bugzilla.redhat.com/show_bug.cgi?id=2437111	external
https://www.cve.org/CVERecord?id=CVE-2025-68121	external
https://nvd.nist.gov/vuln/detail/CVE-2025-68121	external
https://go.dev/cl/737700	external
https://go.dev/issue/77217	external
https://groups.google.com/g/golang-announce/c/K09…	external
https://pkg.go.dev/vuln/GO-2026-4337	external
https://access.redhat.com/security/cve/CVE-2026-0636	self
https://bugzilla.redhat.com/show_bug.cgi?id=2458641	external
https://www.cve.org/CVERecord?id=CVE-2026-0636	external
https://nvd.nist.gov/vuln/detail/CVE-2026-0636	external
https://github.com/bcgit/bc-java/commit/d20cdb843…	external
https://github.com/bcgit/bc-java/wiki/CVE%E2%80%9…	external
https://access.redhat.com/security/cve/CVE-2026-1525	self
https://bugzilla.redhat.com/show_bug.cgi?id=2447144	external
https://www.cve.org/CVERecord?id=CVE-2026-1525	external
https://nvd.nist.gov/vuln/detail/CVE-2026-1525	external
https://cna.openjsf.org/security-advisories.html	external
https://cwe.mitre.org/data/definitions/444.html	external
https://github.com/nodejs/undici/security/advisor…	external
https://hackerone.com/reports/3556037	external
https://www.rfc-editor.org/rfc/rfc9110.html#section-8.6	external
https://access.redhat.com/security/cve/CVE-2026-1526	self
https://bugzilla.redhat.com/show_bug.cgi?id=2447142	external
https://www.cve.org/CVERecord?id=CVE-2026-1526	external
https://nvd.nist.gov/vuln/detail/CVE-2026-1526	external
https://datatracker.ietf.org/doc/html/rfc7692	external
https://github.com/nodejs/undici/security/advisor…	external
https://hackerone.com/reports/3481206	external
https://access.redhat.com/security/cve/CVE-2026-1528	self
https://bugzilla.redhat.com/show_bug.cgi?id=2447145	external
https://www.cve.org/CVERecord?id=CVE-2026-1528	external
https://nvd.nist.gov/vuln/detail/CVE-2026-1528	external
https://github.com/nodejs/undici/security/advisor…	external
https://hackerone.com/reports/3537648	external
https://access.redhat.com/security/cve/CVE-2026-1605	self
https://bugzilla.redhat.com/show_bug.cgi?id=2444815	external
https://www.cve.org/CVERecord?id=CVE-2026-1605	external
https://nvd.nist.gov/vuln/detail/CVE-2026-1605	external
https://github.com/jetty/jetty.project/security/a…	external
https://access.redhat.com/security/cve/CVE-2026-2229	self
https://bugzilla.redhat.com/show_bug.cgi?id=2447143	external
https://www.cve.org/CVERecord?id=CVE-2026-2229	external
https://nvd.nist.gov/vuln/detail/CVE-2026-2229	external
https://github.com/nodejs/undici/security/advisor…	external
https://hackerone.com/reports/3487486	external
https://nodejs.org/api/zlib.html#class-zlibinflateraw	external
https://access.redhat.com/security/cve/CVE-2026-2327	self
https://bugzilla.redhat.com/show_bug.cgi?id=2439272	external
https://www.cve.org/CVERecord?id=CVE-2026-2327	external
https://nvd.nist.gov/vuln/detail/CVE-2026-2327	external
https://gist.github.com/ltduc147/c9abecae1b291ede…	external
https://github.com/markdown-it/markdown-it/blob/1…	external
https://github.com/markdown-it/markdown-it/commit…	external
https://security.snyk.io/vuln/SNYK-JS-MARKDOWNIT-…	external
https://access.redhat.com/security/cve/CVE-2026-5588	self
https://bugzilla.redhat.com/show_bug.cgi?id=2458634	external
https://www.cve.org/CVERecord?id=CVE-2026-5588	external
https://nvd.nist.gov/vuln/detail/CVE-2026-5588	external
https://github.com/bcgit/bc-java/wiki/CVE%E2%80%9…	external
https://access.redhat.com/security/cve/CVE-2026-26996	self
https://bugzilla.redhat.com/show_bug.cgi?id=2441268	external
https://www.cve.org/CVERecord?id=CVE-2026-26996	external
https://nvd.nist.gov/vuln/detail/CVE-2026-26996	external
https://github.com/isaacs/minimatch/commit/2e111f…	external
https://github.com/isaacs/minimatch/security/advi…	external
https://access.redhat.com/security/cve/CVE-2026-27904	self
https://bugzilla.redhat.com/show_bug.cgi?id=2442922	external
https://www.cve.org/CVERecord?id=CVE-2026-27904	external
https://nvd.nist.gov/vuln/detail/CVE-2026-27904	external
https://github.com/isaacs/minimatch/security/advi…	external
https://access.redhat.com/security/cve/CVE-2026-29074	self
https://bugzilla.redhat.com/show_bug.cgi?id=2445132	external
https://www.cve.org/CVERecord?id=CVE-2026-29074	external
https://nvd.nist.gov/vuln/detail/CVE-2026-29074	external
https://github.com/svg/svgo/security/advisories/G…	external
https://access.redhat.com/security/cve/CVE-2026-30827	self
https://bugzilla.redhat.com/show_bug.cgi?id=2445429	external
https://www.cve.org/CVERecord?id=CVE-2026-30827	external
https://nvd.nist.gov/vuln/detail/CVE-2026-30827	external
https://github.com/express-rate-limit/express-rat…	external
https://github.com/express-rate-limit/express-rat…	external
https://access.redhat.com/security/cve/CVE-2026-31802	self
https://bugzilla.redhat.com/show_bug.cgi?id=2445881	external
https://www.cve.org/CVERecord?id=CVE-2026-31802	external
https://nvd.nist.gov/vuln/detail/CVE-2026-31802	external
https://github.com/isaacs/node-tar/commit/f48b5fa…	external
https://github.com/isaacs/node-tar/security/advis…	external
https://access.redhat.com/security/cve/CVE-2026-32141	self
https://bugzilla.redhat.com/show_bug.cgi?id=2447083	external
https://www.cve.org/CVERecord?id=CVE-2026-32141	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32141	external
https://github.com/WebReflection/flatted/commit/7…	external
https://github.com/WebReflection/flatted/pull/88	external
https://github.com/WebReflection/flatted/security…	external
https://access.redhat.com/security/cve/CVE-2026-32280	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456339	external
https://www.cve.org/CVERecord?id=CVE-2026-32280	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32280	external
https://go.dev/cl/758320	external
https://go.dev/issue/78282	external
https://groups.google.com/g/golang-announce/c/0uY…	external
https://pkg.go.dev/vuln/GO-2026-4947	external
https://access.redhat.com/security/cve/CVE-2026-32282	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456336	external
https://www.cve.org/CVERecord?id=CVE-2026-32282	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32282	external
https://go.dev/cl/763761	external
https://go.dev/issue/78293	external
https://pkg.go.dev/vuln/GO-2026-4864	external
https://access.redhat.com/security/cve/CVE-2026-32305	self
https://bugzilla.redhat.com/show_bug.cgi?id=2449595	external
https://www.cve.org/CVERecord?id=CVE-2026-32305	external
https://nvd.nist.gov/vuln/detail/CVE-2026-32305	external
https://github.com/traefik/traefik/releases/tag/v…	external
https://github.com/traefik/traefik/releases/tag/v3.6.11	external
https://github.com/traefik/traefik/releases/tag/v…	external
https://github.com/traefik/traefik/security/advis…	external
https://access.redhat.com/security/cve/CVE-2026-33252	self
https://bugzilla.redhat.com/show_bug.cgi?id=2450542	external
https://www.cve.org/CVERecord?id=CVE-2026-33252	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33252	external
https://github.com/modelcontextprotocol/go-sdk/co…	external
https://github.com/modelcontextprotocol/go-sdk/se…	external
https://access.redhat.com/security/cve/CVE-2026-33810	self
https://bugzilla.redhat.com/show_bug.cgi?id=2456335	external
https://www.cve.org/CVERecord?id=CVE-2026-33810	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33810	external
https://go.dev/cl/763763	external
https://go.dev/issue/78332	external
https://pkg.go.dev/vuln/GO-2026-4866	external
https://access.redhat.com/security/cve/CVE-2026-34742	self
https://bugzilla.redhat.com/show_bug.cgi?id=2454608	external
https://www.cve.org/CVERecord?id=CVE-2026-34742	external
https://nvd.nist.gov/vuln/detail/CVE-2026-34742	external
https://github.com/modelcontextprotocol/go-sdk/co…	external
https://github.com/modelcontextprotocol/go-sdk/pull/760	external
https://github.com/modelcontextprotocol/go-sdk/re…	external
https://github.com/modelcontextprotocol/go-sdk/se…	external
https://access.redhat.com/security/cve/CVE-2026-35051	self
https://bugzilla.redhat.com/show_bug.cgi?id=2464235	external
https://www.cve.org/CVERecord?id=CVE-2026-35051	external
https://nvd.nist.gov/vuln/detail/CVE-2026-35051	external
https://github.com/traefik/traefik/releases/tag/v…	external
https://github.com/traefik/traefik/releases/tag/v3.6.14	external
https://github.com/traefik/traefik/releases/tag/v…	external
https://github.com/traefik/traefik/security/advis…	external
https://access.redhat.com/security/cve/CVE-2026-39858	self
https://bugzilla.redhat.com/show_bug.cgi?id=2464234	external
https://www.cve.org/CVERecord?id=CVE-2026-39858	external
https://nvd.nist.gov/vuln/detail/CVE-2026-39858	external
https://github.com/traefik/traefik/security/advis…	external
https://access.redhat.com/security/cve/CVE-2026-40477	self
https://bugzilla.redhat.com/show_bug.cgi?id=2459344	external
https://www.cve.org/CVERecord?id=CVE-2026-40477	external
https://nvd.nist.gov/vuln/detail/CVE-2026-40477	external
https://github.com/thymeleaf/thymeleaf/security/a…	external
https://access.redhat.com/security/cve/CVE-2026-40478	self
https://bugzilla.redhat.com/show_bug.cgi?id=2459349	external
https://www.cve.org/CVERecord?id=CVE-2026-40478	external
https://nvd.nist.gov/vuln/detail/CVE-2026-40478	external
https://github.com/thymeleaf/thymeleaf/security/a…	external
https://access.redhat.com/security/cve/CVE-2026-40611	self
https://bugzilla.redhat.com/show_bug.cgi?id=2460233	external
https://www.cve.org/CVERecord?id=CVE-2026-40611	external
https://nvd.nist.gov/vuln/detail/CVE-2026-40611	external
https://github.com/go-acme/lego/security/advisori…	external
https://access.redhat.com/security/cve/CVE-2026-40895	self
https://bugzilla.redhat.com/show_bug.cgi?id=2460297	external
https://www.cve.org/CVERecord?id=CVE-2026-40895	external
https://nvd.nist.gov/vuln/detail/CVE-2026-40895	external
https://github.com/follow-redirects/follow-redire…	external
https://access.redhat.com/security/cve/CVE-2026-40912	self
https://bugzilla.redhat.com/show_bug.cgi?id=2464229	external
https://www.cve.org/CVERecord?id=CVE-2026-40912	external
https://nvd.nist.gov/vuln/detail/CVE-2026-40912	external
https://github.com/traefik/traefik/security/advis…	external
https://access.redhat.com/security/cve/CVE-2026-40972	self
https://bugzilla.redhat.com/show_bug.cgi?id=2463332	external
https://www.cve.org/CVERecord?id=CVE-2026-40972	external
https://nvd.nist.gov/vuln/detail/CVE-2026-40972	external
https://spring.io/security/cve-2026-40972	external
https://access.redhat.com/security/cve/CVE-2026-40973	self
https://bugzilla.redhat.com/show_bug.cgi?id=2463330	external
https://www.cve.org/CVERecord?id=CVE-2026-40973	external
https://nvd.nist.gov/vuln/detail/CVE-2026-40973	external
https://spring.io/security/cve-2026-40973	external
https://access.redhat.com/security/cve/CVE-2026-40975	self
https://bugzilla.redhat.com/show_bug.cgi?id=2463331	external
https://www.cve.org/CVERecord?id=CVE-2026-40975	external
https://nvd.nist.gov/vuln/detail/CVE-2026-40975	external
https://spring.io/security/cve-2026-40975	external
https://access.redhat.com/security/cve/CVE-2026-41240	self
https://bugzilla.redhat.com/show_bug.cgi?id=2461147	external
https://www.cve.org/CVERecord?id=CVE-2026-41240	external
https://nvd.nist.gov/vuln/detail/CVE-2026-41240	external
https://github.com/cure53/DOMPurify/commit/c361ba…	external
https://github.com/cure53/DOMPurify/releases/tag/3.4.0	external
https://github.com/cure53/DOMPurify/security/advi…	external
https://access.redhat.com/security/cve/CVE-2026-42033	self
https://bugzilla.redhat.com/show_bug.cgi?id=2461607	external
https://www.cve.org/CVERecord?id=CVE-2026-42033	external
https://nvd.nist.gov/vuln/detail/CVE-2026-42033	external
https://github.com/axios/axios/security/advisorie…	external
https://access.redhat.com/security/cve/CVE-2026-42035	self
https://bugzilla.redhat.com/show_bug.cgi?id=2461606	external
https://www.cve.org/CVERecord?id=CVE-2026-42035	external
https://nvd.nist.gov/vuln/detail/CVE-2026-42035	external
https://github.com/axios/axios/security/advisorie…	external
https://access.redhat.com/security/cve/CVE-2026-42039	self
https://bugzilla.redhat.com/show_bug.cgi?id=2461630	external
https://www.cve.org/CVERecord?id=CVE-2026-42039	external
https://nvd.nist.gov/vuln/detail/CVE-2026-42039	external
https://github.com/axios/axios/security/advisorie…	external
https://access.redhat.com/security/cve/CVE-2026-42041	self
https://bugzilla.redhat.com/show_bug.cgi?id=2461629	external
https://www.cve.org/CVERecord?id=CVE-2026-42041	external
https://nvd.nist.gov/vuln/detail/CVE-2026-42041	external
https://github.com/axios/axios/security/advisorie…	external
https://access.redhat.com/security/cve/CVE-2026-42043	self
https://bugzilla.redhat.com/show_bug.cgi?id=2461626	external
https://www.cve.org/CVERecord?id=CVE-2026-42043	external
https://nvd.nist.gov/vuln/detail/CVE-2026-42043	external
https://github.com/axios/axios/security/advisorie…	external
https://access.redhat.com/security/cve/CVE-2026-42044	self
https://bugzilla.redhat.com/show_bug.cgi?id=2461624	external
https://www.cve.org/CVERecord?id=CVE-2026-42044	external
https://nvd.nist.gov/vuln/detail/CVE-2026-42044	external
https://github.com/axios/axios/security/advisorie…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Red Hat OpenShift Dev Spaces 3.28.0 has been released.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat OpenShift Dev Spaces provides a cloud developer workspace server and a browser-based IDE built for teams and organizations. Dev Spaces runs in OpenShift and is well-suited for container-based development.\nThe 3.28 release is based on Eclipse Che 7.117 and uses the DevWorkspace engine to provide support for workspaces based on devfile v2.1 and v2.2.\nUsers still using the v1 standard should migrate as soon as possible.\nhttps://devfile.io/docs/2.2.0/migrating-to-devfile-v2\nDev Spaces supports OpenShift EUS releases v4.16 and higher. Users are expected to update to supported OpenShift releases in order to continue to get Dev Spaces updates.\nhttps://access.redhat.com/support/policy/updates/openshift#crw",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2026:21772",
        "url": "https://access.redhat.com/errata/RHSA-2026:21772"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/documentation/en-us/red_hat_openshift_dev_spaces/3.28/html/administration_guide/installing-devspaces",
        "url": "https://access.redhat.com/documentation/en-us/red_hat_openshift_dev_spaces/3.28/html/administration_guide/installing-devspaces"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2025-14813",
        "url": "https://access.redhat.com/security/cve/CVE-2025-14813"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2025-68121",
        "url": "https://access.redhat.com/security/cve/CVE-2025-68121"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-0636",
        "url": "https://access.redhat.com/security/cve/CVE-2026-0636"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-1525",
        "url": "https://access.redhat.com/security/cve/CVE-2026-1525"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-1526",
        "url": "https://access.redhat.com/security/cve/CVE-2026-1526"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-1528",
        "url": "https://access.redhat.com/security/cve/CVE-2026-1528"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-1605",
        "url": "https://access.redhat.com/security/cve/CVE-2026-1605"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-2229",
        "url": "https://access.redhat.com/security/cve/CVE-2026-2229"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-2327",
        "url": "https://access.redhat.com/security/cve/CVE-2026-2327"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-26996",
        "url": "https://access.redhat.com/security/cve/CVE-2026-26996"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-27904",
        "url": "https://access.redhat.com/security/cve/CVE-2026-27904"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-29074",
        "url": "https://access.redhat.com/security/cve/CVE-2026-29074"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-30827",
        "url": "https://access.redhat.com/security/cve/CVE-2026-30827"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-31802",
        "url": "https://access.redhat.com/security/cve/CVE-2026-31802"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-32141",
        "url": "https://access.redhat.com/security/cve/CVE-2026-32141"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-32280",
        "url": "https://access.redhat.com/security/cve/CVE-2026-32280"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-32282",
        "url": "https://access.redhat.com/security/cve/CVE-2026-32282"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-32305",
        "url": "https://access.redhat.com/security/cve/CVE-2026-32305"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-33252",
        "url": "https://access.redhat.com/security/cve/CVE-2026-33252"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-33810",
        "url": "https://access.redhat.com/security/cve/CVE-2026-33810"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-34742",
        "url": "https://access.redhat.com/security/cve/CVE-2026-34742"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-35051",
        "url": "https://access.redhat.com/security/cve/CVE-2026-35051"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-39858",
        "url": "https://access.redhat.com/security/cve/CVE-2026-39858"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-40477",
        "url": "https://access.redhat.com/security/cve/CVE-2026-40477"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-40478",
        "url": "https://access.redhat.com/security/cve/CVE-2026-40478"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-40611",
        "url": "https://access.redhat.com/security/cve/CVE-2026-40611"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-40895",
        "url": "https://access.redhat.com/security/cve/CVE-2026-40895"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-40912",
        "url": "https://access.redhat.com/security/cve/CVE-2026-40912"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-40972",
        "url": "https://access.redhat.com/security/cve/CVE-2026-40972"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-40973",
        "url": "https://access.redhat.com/security/cve/CVE-2026-40973"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-40975",
        "url": "https://access.redhat.com/security/cve/CVE-2026-40975"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-41240",
        "url": "https://access.redhat.com/security/cve/CVE-2026-41240"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-42033",
        "url": "https://access.redhat.com/security/cve/CVE-2026-42033"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-42035",
        "url": "https://access.redhat.com/security/cve/CVE-2026-42035"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-42039",
        "url": "https://access.redhat.com/security/cve/CVE-2026-42039"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-42041",
        "url": "https://access.redhat.com/security/cve/CVE-2026-42041"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-42043",
        "url": "https://access.redhat.com/security/cve/CVE-2026-42043"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-42044",
        "url": "https://access.redhat.com/security/cve/CVE-2026-42044"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/cve/CVE-2026-5588",
        "url": "https://access.redhat.com/security/cve/CVE-2026-5588"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/",
        "url": "https://access.redhat.com/security/updates/classification/"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_21772.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.28.0 Release.",
    "tracking": {
      "current_release_date": "2026-06-08T07:28:44+00:00",
      "generator": {
        "date": "2026-06-08T07:28:44+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.8.2"
        }
      },
      "id": "RHSA-2026:21772",
      "initial_release_date": "2026-05-28T21:29:20+00:00",
      "revision_history": [
        {
          "date": "2026-05-28T21:29:20+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2026-05-28T21:29:25+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-06-08T07:28:44+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat OpenShift Dev Spaces 3.28",
                "product": {
                  "name": "Red Hat OpenShift Dev Spaces 3.28",
                  "product_id": "Red Hat OpenShift Dev Spaces 3.28",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift_devspaces:3.28::el9"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat OpenShift Dev Spaces"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
                  "product_id": "registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/code-rhel9@sha256%3Ab86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/code-rhel9\u0026tag=1779814592"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
                  "product_id": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/code-sshd-rhel9@sha256%3Aa47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/code-sshd-rhel9\u0026tag=1779813519"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
                  "product_id": "registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/configbump-rhel9@sha256%3Aae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/configbump-rhel9\u0026tag=1779805126"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
                  "product_id": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/dashboard-rhel9@sha256%3Afd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/dashboard-rhel9\u0026tag=1779341289"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
                  "product_id": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/imagepuller-rhel9@sha256%3Ace0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/imagepuller-rhel9\u0026tag=1779821829"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
                  "product_id": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/jetbrains-ide-rhel9@sha256%3A2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/jetbrains-ide-rhel9\u0026tag=1779817966"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
                  "product_id": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/multicluster-redirector-rhel9@sha256%3A4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/multicluster-redirector-rhel9\u0026tag=1779330003"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
                  "product_id": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/openvsx-rhel9@sha256%3Ae9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/openvsx-rhel9\u0026tag=1779528224"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
                  "product_id": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/devspaces-rhel9-operator@sha256%3Af53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/devspaces-rhel9-operator\u0026tag=1779824076"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
                  "product_id": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/devspaces-operator-bundle@sha256%3Aaea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/devspaces-operator-bundle\u0026tag=1779837964"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
                  "product_id": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/pluginregistry-rhel9@sha256%3A5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/pluginregistry-rhel9\u0026tag=1779359423"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
                  "product_id": "registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/server-rhel9@sha256%3A0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/server-rhel9\u0026tag=1779342423"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
                  "product_id": "registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/traefik-rhel9@sha256%3A3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/traefik-rhel9\u0026tag=1779786779"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64",
                  "product_id": "registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/udi-rhel9@sha256%3Af038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/udi-rhel9\u0026tag=1779829736"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
                  "product_id": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/udi-base-rhel10@sha256%3Acc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/udi-base-rhel10\u0026tag=1779741226"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
                "product": {
                  "name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
                  "product_id": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/udi-base-rhel9@sha256%3Adc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1?arch=amd64\u0026repository_url=registry.redhat.io/devspaces/udi-base-rhel9\u0026tag=1779741066"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "amd64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
                  "product_id": "registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/code-rhel9@sha256%3Acc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/code-rhel9\u0026tag=1779814592"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
                  "product_id": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/code-sshd-rhel9@sha256%3A20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/code-sshd-rhel9\u0026tag=1779813519"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
                  "product_id": "registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/configbump-rhel9@sha256%3A561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/configbump-rhel9\u0026tag=1779805126"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
                  "product_id": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/dashboard-rhel9@sha256%3A0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/dashboard-rhel9\u0026tag=1779341289"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
                  "product_id": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/imagepuller-rhel9@sha256%3Ad9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/imagepuller-rhel9\u0026tag=1779821829"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
                  "product_id": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/jetbrains-ide-rhel9@sha256%3A2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/jetbrains-ide-rhel9\u0026tag=1779817966"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
                  "product_id": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/multicluster-redirector-rhel9@sha256%3Aad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/multicluster-redirector-rhel9\u0026tag=1779330003"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
                  "product_id": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/openvsx-rhel9@sha256%3Afe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/openvsx-rhel9\u0026tag=1779528224"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
                  "product_id": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/devspaces-rhel9-operator@sha256%3A0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/devspaces-rhel9-operator\u0026tag=1779824076"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
                  "product_id": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/pluginregistry-rhel9@sha256%3Ad0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/pluginregistry-rhel9\u0026tag=1779359423"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
                  "product_id": "registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/server-rhel9@sha256%3A7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/server-rhel9\u0026tag=1779342423"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
                  "product_id": "registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/traefik-rhel9@sha256%3A36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/traefik-rhel9\u0026tag=1779786779"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
                  "product_id": "registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/udi-rhel9@sha256%3Ad991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/udi-rhel9\u0026tag=1779829736"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
                  "product_id": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/udi-base-rhel10@sha256%3A9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/udi-base-rhel10\u0026tag=1779741226"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
                "product": {
                  "name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
                  "product_id": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
                  "product_identification_helper": {
                    "purl": "pkg:oci/udi-base-rhel9@sha256%3Aba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7?arch=s390x\u0026repository_url=registry.redhat.io/devspaces/udi-base-rhel9\u0026tag=1779741066"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/code-rhel9@sha256%3Ad752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/code-rhel9\u0026tag=1779814592"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/code-sshd-rhel9@sha256%3A1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/code-sshd-rhel9\u0026tag=1779813519"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/configbump-rhel9@sha256%3A64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/configbump-rhel9\u0026tag=1779805126"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/dashboard-rhel9@sha256%3Ae10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/dashboard-rhel9\u0026tag=1779341289"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/imagepuller-rhel9@sha256%3Ac694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/imagepuller-rhel9\u0026tag=1779821829"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/jetbrains-ide-rhel9@sha256%3Ad23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/jetbrains-ide-rhel9\u0026tag=1779817966"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/multicluster-redirector-rhel9@sha256%3A49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/multicluster-redirector-rhel9\u0026tag=1779330003"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/openvsx-rhel9@sha256%3A94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/openvsx-rhel9\u0026tag=1779528224"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/devspaces-rhel9-operator@sha256%3A586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/devspaces-rhel9-operator\u0026tag=1779824076"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/pluginregistry-rhel9@sha256%3Ae16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/pluginregistry-rhel9\u0026tag=1779359423"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/server-rhel9@sha256%3A0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/server-rhel9\u0026tag=1779342423"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/traefik-rhel9@sha256%3A992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/traefik-rhel9\u0026tag=1779786779"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/udi-rhel9@sha256%3A09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/udi-rhel9\u0026tag=1779829736"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/udi-base-rhel10@sha256%3Ab03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/udi-base-rhel10\u0026tag=1779741226"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
                "product": {
                  "name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
                  "product_id": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:oci/udi-base-rhel9@sha256%3A6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9?arch=ppc64le\u0026repository_url=registry.redhat.io/devspaces/udi-base-rhel9\u0026tag=1779741066"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
                  "product_id": "registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/code-rhel9@sha256%3Acbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/code-rhel9\u0026tag=1779814592"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
                  "product_id": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/code-sshd-rhel9@sha256%3A1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/code-sshd-rhel9\u0026tag=1779813519"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
                  "product_id": "registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/configbump-rhel9@sha256%3A4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/configbump-rhel9\u0026tag=1779805126"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
                  "product_id": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/dashboard-rhel9@sha256%3Aadea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/dashboard-rhel9\u0026tag=1779341289"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
                  "product_id": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/imagepuller-rhel9@sha256%3Aefd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/imagepuller-rhel9\u0026tag=1779821829"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
                  "product_id": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/jetbrains-ide-rhel9@sha256%3A1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/jetbrains-ide-rhel9\u0026tag=1779817966"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
                  "product_id": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/multicluster-redirector-rhel9@sha256%3A7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/multicluster-redirector-rhel9\u0026tag=1779330003"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
                  "product_id": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/openvsx-rhel9@sha256%3A341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/openvsx-rhel9\u0026tag=1779528224"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
                  "product_id": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/devspaces-rhel9-operator@sha256%3A32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/devspaces-rhel9-operator\u0026tag=1779824076"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
                  "product_id": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/pluginregistry-rhel9@sha256%3A82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/pluginregistry-rhel9\u0026tag=1779359423"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
                  "product_id": "registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/server-rhel9@sha256%3A811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/server-rhel9\u0026tag=1779342423"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
                  "product_id": "registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/traefik-rhel9@sha256%3Aaedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/traefik-rhel9\u0026tag=1779786779"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
                  "product_id": "registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/udi-rhel9@sha256%3A977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/udi-rhel9\u0026tag=1779829736"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
                  "product_id": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/udi-base-rhel10@sha256%3A852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/udi-base-rhel10\u0026tag=1779741226"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
                "product": {
                  "name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
                  "product_id": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/udi-base-rhel9@sha256%3A35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8?arch=arm64\u0026repository_url=registry.redhat.io/devspaces/udi-base-rhel9\u0026tag=1779741066"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "arm64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le"
        },
        "product_reference": "registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64"
        },
        "product_reference": "registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x"
        },
        "product_reference": "registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64 as a component of Red Hat OpenShift Dev Spaces 3.28",
          "product_id": "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        },
        "product_reference": "registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64",
        "relates_to_product_reference": "Red Hat OpenShift Dev Spaces 3.28"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-14813",
      "cwe": {
        "id": "CWE-327",
        "name": "Use of a Broken or Risky Cryptographic Algorithm"
      },
      "discovery_date": "2026-04-15T10:01:27.769752+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2458640"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Legion of the Bouncy Castle Inc. BC-JAVA bcprov. The `GOSTCTR` implementation is unable to securely process more than 255 blocks of data due to keystream reuse. This issue allows an attacker to break the fundamental confidentiality of any data protected by the `G3413CTRBlockCipher`, potentially leading to the recovery and access of encrypted data.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "bouncycastle: BC-JAVA: GOSTCTR implementation unable to process more than 255 blocks correctly",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this flaw, an attacker needs to capture ciphertext encrypted by the `GOSTCTR` implementation where the `G3413CTRBlockCipher` processed more than 255 blocks of data, resulting in keystream reuse. An attack typically requires capturing these overlapping ciphertexts to perform cryptanalysis and uncover the underlying data.\nThe primary impact of this vulnerability is the potential loss of confidentiality for data encrypted by the `GOSTCTR` implementation. This can compromise encrypted communications or sensitive stored data by allowing an attacker to fully recover the plaintext.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-14813"
        },
        {
          "category": "external",
          "summary": "RHBZ#2458640",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2458640"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-14813",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-14813"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-14813",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-14813"
        },
        {
          "category": "external",
          "summary": "https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902025%E2%80%9014813",
          "url": "https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902025%E2%80%9014813"
        }
      ],
      "release_date": "2026-04-15T08:56:34.057000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        },
        {
          "category": "workaround",
          "details": "To mitigate this vulnerability, strictly limit the payload encrypted under a single key and Initialization Vector (IV) pair using the GOSTCTR implementation and G3413CTRBlockCipher to a maximum of 255 blocks. Alternatively, transition to a more secure, standardized and authenticated encryption mode.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "bouncycastle: BC-JAVA: GOSTCTR implementation unable to process more than 255 blocks correctly"
    },
    {
      "cve": "CVE-2025-68121",
      "discovery_date": "2026-02-05T18:01:30.086058+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2437111"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2025-68121"
        },
        {
          "category": "external",
          "summary": "RHBZ#2437111",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/737700",
          "url": "https://go.dev/cl/737700"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/77217",
          "url": "https://go.dev/issue/77217"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
          "url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4337",
          "url": "https://pkg.go.dev/vuln/GO-2026-4337"
        }
      ],
      "release_date": "2026-02-05T17:48:44.141000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
    },
    {
      "cve": "CVE-2026-0636",
      "cwe": {
        "id": "CWE-90",
        "name": "Improper Neutralization of Special Elements used in an LDAP Query (\u0027LDAP Injection\u0027)"
      },
      "discovery_date": "2026-04-15T10:01:32.911938+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2458641"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Legion of the Bouncy Castle Inc. BC-JAVA bcprov. The `LDAPStoreHelper` implementation fails to properly neutralize special elements in user-supplied input before incorporating them into LDAP queries. This allows a remote attacker to execute an LDAP injection attack by supplying crafted input, potentially leading to disclosure of sensitive information or the manipulation of directory search queries.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "bouncycastle: BC-JAVA: LDAP injection vulnerability in LDAPStoreHelper.java",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to submit crafted input to an application using the `LDAPStoreHelper` implementation for directory queries. An attack typically requires the application to pass the malicious input directly into a search filter, allowing the attacker to modify the resulting LDAP query.\nThe primary impact of this vulnerability is the loss of confidentiality and integrity for directory data. This can allow an attacker to bypass search restrictions and manipulate directory results, potentially leading to unauthorized access or privilege escalation.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-0636"
        },
        {
          "category": "external",
          "summary": "RHBZ#2458641",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2458641"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-0636",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-0636"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-0636",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-0636"
        },
        {
          "category": "external",
          "summary": "https://github.com/bcgit/bc-java/commit/d20cdb8430e09224114fec0179a71859929fcbde",
          "url": "https://github.com/bcgit/bc-java/commit/d20cdb8430e09224114fec0179a71859929fcbde"
        },
        {
          "category": "external",
          "summary": "https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902026%E2%80%900636",
          "url": "https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902026%E2%80%900636"
        }
      ],
      "release_date": "2026-04-15T08:59:12.677000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        },
        {
          "category": "workaround",
          "details": "To mitigate this flaw, sanitize all user-supplied input to remove or escape LDAP special characters before passing it to the LDAPStoreHelper for directory queries. If the input contains unexpected metacharacters such as asterisks, parentheses or backslashes, reject the request or escape the characters.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "bouncycastle: BC-JAVA: LDAP injection vulnerability in LDAPStoreHelper.java"
    },
    {
      "cve": "CVE-2026-1525",
      "cwe": {
        "id": "CWE-444",
        "name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
      },
      "discovery_date": "2026-03-12T21:01:33.639277+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2447144"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in undici, a Node.js HTTP/1.1 client. A remote attacker could exploit this vulnerability by sending HTTP/1.1 requests that include duplicate Content-Length headers with different casing (e.g., \"Content-Length\" and \"content-length\"). This can lead to HTTP Request Smuggling, a technique where an attacker sends an ambiguous request that is interpreted differently by a proxy and a backend server. Successful exploitation could result in unauthorized access, cache poisoning, or credential hijacking. It may also cause a Denial of Service (DoS) if strict HTTP parsers reject the malformed requests.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "undici: Undici: HTTP Request Smuggling and Denial of Service due to duplicate Content-Length headers",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Moderate impact. A flaw in the undici Node.js HTTP/1.1 client allows for HTTP Request Smuggling or Denial of Service. This can occur in Red Hat products that use undici and process HTTP requests where user-controlled header names are not case-normalized, or headers are passed as flat arrays.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-1525"
        },
        {
          "category": "external",
          "summary": "RHBZ#2447144",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2447144"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-1525",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-1525"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-1525",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-1525"
        },
        {
          "category": "external",
          "summary": "https://cna.openjsf.org/security-advisories.html",
          "url": "https://cna.openjsf.org/security-advisories.html"
        },
        {
          "category": "external",
          "summary": "https://cwe.mitre.org/data/definitions/444.html",
          "url": "https://cwe.mitre.org/data/definitions/444.html"
        },
        {
          "category": "external",
          "summary": "https://github.com/nodejs/undici/security/advisories/GHSA-2mjp-6q6p-2qxm",
          "url": "https://github.com/nodejs/undici/security/advisories/GHSA-2mjp-6q6p-2qxm"
        },
        {
          "category": "external",
          "summary": "https://hackerone.com/reports/3556037",
          "url": "https://hackerone.com/reports/3556037"
        },
        {
          "category": "external",
          "summary": "https://www.rfc-editor.org/rfc/rfc9110.html#section-8.6",
          "url": "https://www.rfc-editor.org/rfc/rfc9110.html#section-8.6"
        }
      ],
      "release_date": "2026-03-12T19:56:55.092000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "undici: Undici: HTTP Request Smuggling and Denial of Service due to duplicate Content-Length headers"
    },
    {
      "cve": "CVE-2026-1526",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2026-03-12T21:01:25.538271+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2447142"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in undici. A remote attacker can exploit this vulnerability by sending a specially crafted compressed frame, known as a \"decompression bomb,\" during permessage-deflate decompression. The undici WebSocket client does not properly limit the size of decompressed data, leading to unbounded memory consumption. This can cause the Node.js process to exhaust available memory, resulting in a denial of service (DoS) where the process crashes or becomes unresponsive.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "undici: undici: Denial of Service via unbounded memory consumption during WebSocket permessage-deflate decompression",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-1526"
        },
        {
          "category": "external",
          "summary": "RHBZ#2447142",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2447142"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-1526",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-1526"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-1526",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-1526"
        },
        {
          "category": "external",
          "summary": "https://cna.openjsf.org/security-advisories.html",
          "url": "https://cna.openjsf.org/security-advisories.html"
        },
        {
          "category": "external",
          "summary": "https://datatracker.ietf.org/doc/html/rfc7692",
          "url": "https://datatracker.ietf.org/doc/html/rfc7692"
        },
        {
          "category": "external",
          "summary": "https://github.com/nodejs/undici/security/advisories/GHSA-vrm6-8vpv-qv8q",
          "url": "https://github.com/nodejs/undici/security/advisories/GHSA-vrm6-8vpv-qv8q"
        },
        {
          "category": "external",
          "summary": "https://hackerone.com/reports/3481206",
          "url": "https://hackerone.com/reports/3481206"
        }
      ],
      "release_date": "2026-03-12T20:08:05.950000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "undici: undici: Denial of Service via unbounded memory consumption during WebSocket permessage-deflate decompression"
    },
    {
      "cve": "CVE-2026-1528",
      "cwe": {
        "id": "CWE-248",
        "name": "Uncaught Exception"
      },
      "discovery_date": "2026-03-12T21:01:36.954017+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2447145"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in undici. A remote attacker could exploit this vulnerability by sending a specially crafted WebSocket frame with an extremely large 64-bit length. This causes undici\u0027s ByteParser to overflow its internal calculations, leading to an invalid state and a fatal TypeError. The primary consequence is a Denial of Service (DoS), which terminates the process.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "undici: undici: Denial of Service via crafted WebSocket frame with large length",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-1528"
        },
        {
          "category": "external",
          "summary": "RHBZ#2447145",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2447145"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-1528",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-1528"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-1528",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-1528"
        },
        {
          "category": "external",
          "summary": "https://cna.openjsf.org/security-advisories.html",
          "url": "https://cna.openjsf.org/security-advisories.html"
        },
        {
          "category": "external",
          "summary": "https://github.com/nodejs/undici/security/advisories/GHSA-f269-vfmq-vjvj",
          "url": "https://github.com/nodejs/undici/security/advisories/GHSA-f269-vfmq-vjvj"
        },
        {
          "category": "external",
          "summary": "https://hackerone.com/reports/3537648",
          "url": "https://hackerone.com/reports/3537648"
        }
      ],
      "release_date": "2026-03-12T20:21:57.775000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "undici: undici: Denial of Service via crafted WebSocket frame with large length"
    },
    {
      "cve": "CVE-2026-1605",
      "cwe": {
        "id": "CWE-772",
        "name": "Missing Release of Resource after Effective Lifetime"
      },
      "discovery_date": "2026-03-05T11:00:57.250283+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2444815"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in org.eclipse.jetty. A remote attacker can exploit this vulnerability by sending a compressed HTTP request with Content-Encoding: gzip when the server\u0027s response is not compressed. This prevents the release of the JDK Inflater, leading to a resource leak. This resource exhaustion can result in a Denial of Service (DoS), making the server unavailable to legitimate users.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "org.eclipse.jetty/jetty-server: Eclipse Jetty: Denial of Service due to unreleased JDK Inflater from compressed HTTP requests",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-1605"
        },
        {
          "category": "external",
          "summary": "RHBZ#2444815",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2444815"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-1605",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-1605"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-1605",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-1605"
        },
        {
          "category": "external",
          "summary": "https://github.com/jetty/jetty.project/security/advisories/GHSA-xxh7-fcf3-rj7f",
          "url": "https://github.com/jetty/jetty.project/security/advisories/GHSA-xxh7-fcf3-rj7f"
        }
      ],
      "release_date": "2026-03-05T09:39:01.315000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "org.eclipse.jetty/jetty-server: Eclipse Jetty: Denial of Service due to unreleased JDK Inflater from compressed HTTP requests"
    },
    {
      "cve": "CVE-2026-2229",
      "cwe": {
        "id": "CWE-248",
        "name": "Uncaught Exception"
      },
      "discovery_date": "2026-03-12T21:01:29.187989+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2447143"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the undici WebSocket client. A remote malicious server can exploit this vulnerability by sending a WebSocket frame with an invalid `server_max_window_bits` parameter within the permessage-deflate extension. This improper validation causes the client\u0027s Node.js process to terminate, leading to a denial-of-service (DoS) condition for the client.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "undici: Undici: Denial of Service via invalid WebSocket permessage-deflate extension parameter",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-2229"
        },
        {
          "category": "external",
          "summary": "RHBZ#2447143",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2447143"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-2229",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-2229"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-2229",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-2229"
        },
        {
          "category": "external",
          "summary": "https://cna.openjsf.org/security-advisories.html",
          "url": "https://cna.openjsf.org/security-advisories.html"
        },
        {
          "category": "external",
          "summary": "https://datatracker.ietf.org/doc/html/rfc7692",
          "url": "https://datatracker.ietf.org/doc/html/rfc7692"
        },
        {
          "category": "external",
          "summary": "https://github.com/nodejs/undici/security/advisories/GHSA-v9p9-hfj2-hcw8",
          "url": "https://github.com/nodejs/undici/security/advisories/GHSA-v9p9-hfj2-hcw8"
        },
        {
          "category": "external",
          "summary": "https://hackerone.com/reports/3487486",
          "url": "https://hackerone.com/reports/3487486"
        },
        {
          "category": "external",
          "summary": "https://nodejs.org/api/zlib.html#class-zlibinflateraw",
          "url": "https://nodejs.org/api/zlib.html#class-zlibinflateraw"
        }
      ],
      "release_date": "2026-03-12T20:27:05.600000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "undici: Undici: Denial of Service via invalid WebSocket permessage-deflate extension parameter"
    },
    {
      "cve": "CVE-2026-2327",
      "cwe": {
        "id": "CWE-1333",
        "name": "Inefficient Regular Expression Complexity"
      },
      "discovery_date": "2026-02-12T06:00:49.531803+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2439272"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in markdown-it. A remote attacker can exploit this Regular Expression Denial of Service (ReDoS) vulnerability by providing a specially crafted input containing a long sequence of asterisk characters followed by a non-matching character to the `linkify` function. This triggers excessive backtracking in the regular expression, leading to a denial-of-service condition.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "markdown-it: markdown-it: Denial of Service via Regular Expression Denial of Service in linkify function",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-2327"
        },
        {
          "category": "external",
          "summary": "RHBZ#2439272",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2439272"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-2327",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-2327"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-2327",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-2327"
        },
        {
          "category": "external",
          "summary": "https://gist.github.com/ltduc147/c9abecae1b291ede4f692f2ab988c917",
          "url": "https://gist.github.com/ltduc147/c9abecae1b291ede4f692f2ab988c917"
        },
        {
          "category": "external",
          "summary": "https://github.com/markdown-it/markdown-it/blob/14.1.0/lib/rules_inline/linkify.mjs%23L33",
          "url": "https://github.com/markdown-it/markdown-it/blob/14.1.0/lib/rules_inline/linkify.mjs%23L33"
        },
        {
          "category": "external",
          "summary": "https://github.com/markdown-it/markdown-it/commit/4b4bbcae5e0990a5b172378e507b33a59012ed26",
          "url": "https://github.com/markdown-it/markdown-it/commit/4b4bbcae5e0990a5b172378e507b33a59012ed26"
        },
        {
          "category": "external",
          "summary": "https://security.snyk.io/vuln/SNYK-JS-MARKDOWNIT-10666750",
          "url": "https://security.snyk.io/vuln/SNYK-JS-MARKDOWNIT-10666750"
        }
      ],
      "release_date": "2026-02-12T05:00:07.369000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "markdown-it: markdown-it: Denial of Service via Regular Expression Denial of Service in linkify function"
    },
    {
      "cve": "CVE-2026-5588",
      "cwe": {
        "id": "CWE-347",
        "name": "Improper Verification of Cryptographic Signature"
      },
      "discovery_date": "2026-04-15T10:00:59.672015+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2458634"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Legion of the Bouncy Castle Inc. BC-JAVA bcpkix. The PKIX draft `CompositeVerifier` implementation improperly accepts an empty signature sequence as a valid cryptographic signature. This issue allows a remote attacker to bypass signature verification mechanisms, potentially compromising the authenticity and integrity of data.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "bouncycastle: BC-JAVA: PKIX draft CompositeVerifier accepts empty signature sequence as valid",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs to submit a crafted payload or token containing an empty signature sequence to an application using the `CompositeVerifier` for cryptographic validation. An attack typically requires the application to process this malformed data and improperly accept the empty sequence as a valid signature, bypassing standard verification checks.\nThe primary impact of this vulnerability is the compromise of data authenticity and integrity, allowing an attacker to forge digital signatures and impersonate trusted entities.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-5588"
        },
        {
          "category": "external",
          "summary": "RHBZ#2458634",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2458634"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-5588",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-5588"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-5588",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-5588"
        },
        {
          "category": "external",
          "summary": "https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902026%E2%80%905588",
          "url": "https://github.com/bcgit/bc-java/wiki/CVE%E2%80%902026%E2%80%905588"
        }
      ],
      "release_date": "2026-04-15T09:06:15.617000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        },
        {
          "category": "workaround",
          "details": "To mitigate this flaw, check that the signature sequence is not empty before passing any data to the CompositeVerifier for cryptographic validation. If the sequence is empty or null, explicitly reject the payload before it is processed.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "bouncycastle: BC-JAVA: PKIX draft CompositeVerifier accepts empty signature sequence as valid"
    },
    {
      "cve": "CVE-2026-26996",
      "cwe": {
        "id": "CWE-1333",
        "name": "Inefficient Regular Expression Complexity"
      },
      "discovery_date": "2026-02-20T04:01:11.896063+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2441268"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in minimatch. A remote attacker could exploit this Regular Expression Denial of Service (ReDoS) vulnerability by providing a specially crafted glob pattern. This pattern, containing numerous consecutive wildcard characters, causes excessive processing and exponential backtracking in the regular expression engine. Successful exploitation leads to a Denial of Service (DoS), making the application unresponsive.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "minimatch: minimatch: Denial of Service via specially crafted glob patterns",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Exploitation of this flaw requires that a user or service processes untrusted input.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-26996"
        },
        {
          "category": "external",
          "summary": "RHBZ#2441268",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2441268"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-26996",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-26996"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-26996",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-26996"
        },
        {
          "category": "external",
          "summary": "https://github.com/isaacs/minimatch/commit/2e111f3a79abc00fa73110195de2c0f2351904f5",
          "url": "https://github.com/isaacs/minimatch/commit/2e111f3a79abc00fa73110195de2c0f2351904f5"
        },
        {
          "category": "external",
          "summary": "https://github.com/isaacs/minimatch/security/advisories/GHSA-3ppc-4f35-3m26",
          "url": "https://github.com/isaacs/minimatch/security/advisories/GHSA-3ppc-4f35-3m26"
        }
      ],
      "release_date": "2026-02-20T03:05:21.105000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "minimatch: minimatch: Denial of Service via specially crafted glob patterns"
    },
    {
      "cve": "CVE-2026-27904",
      "cwe": {
        "id": "CWE-1333",
        "name": "Inefficient Regular Expression Complexity"
      },
      "discovery_date": "2026-02-26T02:01:23.004531+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2442922"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in minimatch. A remote attacker could exploit this vulnerability by providing a specially crafted glob expression with nested unbounded quantifiers. This could lead to catastrophic backtracking in the V8 JavaScript engine, causing the application to become unresponsive and resulting in a Denial of Service (DoS).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Exploitation of this flaw requires that a user or service processes untrusted input.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-27904"
        },
        {
          "category": "external",
          "summary": "RHBZ#2442922",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2442922"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-27904",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-27904"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27904",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27904"
        },
        {
          "category": "external",
          "summary": "https://github.com/isaacs/minimatch/security/advisories/GHSA-23c5-xmqv-rm74",
          "url": "https://github.com/isaacs/minimatch/security/advisories/GHSA-23c5-xmqv-rm74"
        }
      ],
      "release_date": "2026-02-26T01:07:42.693000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions"
    },
    {
      "cve": "CVE-2026-29074",
      "cwe": {
        "id": "CWE-776",
        "name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
      },
      "discovery_date": "2026-03-06T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2445132"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in SVGO, an SVG (Scalable Vector Graphics) Optimizer. This vulnerability allows a remote attacker to cause a Denial of Service (DoS) by submitting a specially crafted XML file. The application\u0027s failure to properly guard against XML entity expansion or recursion can lead to the Node.js process consuming excessive memory and crashing.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "svgo: SVGO: Denial of Service via XML entity expansion",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-29074"
        },
        {
          "category": "external",
          "summary": "RHBZ#2445132",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445132"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-29074",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-29074"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-29074",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-29074"
        },
        {
          "category": "external",
          "summary": "https://github.com/svg/svgo/security/advisories/GHSA-xpqw-6gx7-v673",
          "url": "https://github.com/svg/svgo/security/advisories/GHSA-xpqw-6gx7-v673"
        }
      ],
      "release_date": "2026-03-06T07:23:05.716000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "svgo: SVGO: Denial of Service via XML entity expansion"
    },
    {
      "cve": "CVE-2026-30827",
      "cwe": {
        "id": "CWE-1389",
        "name": "Incorrect Parsing of Numbers with Different Radices"
      },
      "discovery_date": "2026-03-07T06:01:06.325390+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2445429"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in express-rate-limit. The default key generator incorrectly applies IPv6 subnet masking to IPv4-mapped IPv6 addresses, which are used when an IPv4 client connects to a dual-stack server. This misconfiguration causes all IPv4 traffic to be treated as a single entity for rate limiting. Consequently, a remote attacker can exhaust the rate limit with a single client, leading to a Denial of Service (DoS) for all other IPv4 clients by causing them to receive HTTP 429 errors.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "express-rate-limit: express-rate-limit: Denial of Service for IPv4 clients due to incorrect IPv6 subnet masking",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-30827"
        },
        {
          "category": "external",
          "summary": "RHBZ#2445429",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445429"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-30827",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-30827"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-30827",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-30827"
        },
        {
          "category": "external",
          "summary": "https://github.com/express-rate-limit/express-rate-limit/commit/14e53888cdfd1b9798faf5b634c4206409e27fc4",
          "url": "https://github.com/express-rate-limit/express-rate-limit/commit/14e53888cdfd1b9798faf5b634c4206409e27fc4"
        },
        {
          "category": "external",
          "summary": "https://github.com/express-rate-limit/express-rate-limit/security/advisories/GHSA-46wh-pxpv-q5gq",
          "url": "https://github.com/express-rate-limit/express-rate-limit/security/advisories/GHSA-46wh-pxpv-q5gq"
        }
      ],
      "release_date": "2026-03-07T05:19:08.206000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        },
        {
          "category": "workaround",
          "details": "Restrict network access to applications utilizing the express-rate-limit middleware to trusted clients or networks. Implementing firewall rules or network access controls can prevent untrusted actors from exploiting the shared rate-limit bucket vulnerability affecting IPv4-mapped IPv6 addresses on dual-stack servers.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "express-rate-limit: express-rate-limit: Denial of Service for IPv4 clients due to incorrect IPv6 subnet masking"
    },
    {
      "cve": "CVE-2026-31802",
      "cwe": {
        "id": "CWE-22",
        "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
      },
      "discovery_date": "2026-03-09T22:01:31.563825+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2445881"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in tar. An attacker can exploit this vulnerability by crafting a malicious tar archive containing a drive-relative symlink. This symlink, such as C:../../../target.txt, can trick the tar utility into writing files outside the intended extraction directory during normal archive extraction, leading to unauthorized file overwrite.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "tar: tar: File overwrite via drive-relative symlink traversal",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This is a MODERATE impact vulnerability. The tar utility is susceptible to unauthorized file overwrites when processing specially crafted archives containing drive-relative symlinks. As such, it primarily affects integrity (since it can overwrite files and file contents), with no clear indication that availability or confidentiality may be affected.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-31802"
        },
        {
          "category": "external",
          "summary": "RHBZ#2445881",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445881"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-31802",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-31802"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-31802",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-31802"
        },
        {
          "category": "external",
          "summary": "https://github.com/isaacs/node-tar/commit/f48b5fa3b7985ddab96dc0f2125a4ffc9911b6ad",
          "url": "https://github.com/isaacs/node-tar/commit/f48b5fa3b7985ddab96dc0f2125a4ffc9911b6ad"
        },
        {
          "category": "external",
          "summary": "https://github.com/isaacs/node-tar/security/advisories/GHSA-9ppj-qmqm-q256",
          "url": "https://github.com/isaacs/node-tar/security/advisories/GHSA-9ppj-qmqm-q256"
        }
      ],
      "release_date": "2026-03-09T21:11:56.668000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "tar: tar: File overwrite via drive-relative symlink traversal"
    },
    {
      "cve": "CVE-2026-32141",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2026-03-12T19:01:30.987208+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2447083"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A denial of service flaw has been discovered in the flatted npm library. flatted\u0027s parse() function uses a recursive revive() phase to resolve circular references in deserialized JSON. When given a crafted payload with deeply nested or self-referential $ indices, the recursion depth is unbounded, causing a stack overflow that crashes the Node.js process.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "flatted: flatted: Unbounded recursion DoS in parse() revive phase",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32141"
        },
        {
          "category": "external",
          "summary": "RHBZ#2447083",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2447083"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32141",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32141"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32141",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32141"
        },
        {
          "category": "external",
          "summary": "https://github.com/WebReflection/flatted/commit/7eb65d857e1a40de11c47461cdbc8541449f0606",
          "url": "https://github.com/WebReflection/flatted/commit/7eb65d857e1a40de11c47461cdbc8541449f0606"
        },
        {
          "category": "external",
          "summary": "https://github.com/WebReflection/flatted/pull/88",
          "url": "https://github.com/WebReflection/flatted/pull/88"
        },
        {
          "category": "external",
          "summary": "https://github.com/WebReflection/flatted/security/advisories/GHSA-25h7-pfq9-p65f",
          "url": "https://github.com/WebReflection/flatted/security/advisories/GHSA-25h7-pfq9-p65f"
        }
      ],
      "release_date": "2026-03-12T18:08:09.634000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "flatted: flatted: Unbounded recursion DoS in parse() revive phase"
    },
    {
      "cve": "CVE-2026-32280",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2026-04-08T02:01:19.572351+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456339"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456339",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32280",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/758320",
          "url": "https://go.dev/cl/758320"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78282",
          "url": "https://go.dev/issue/78282"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4947",
          "url": "https://pkg.go.dev/vuln/GO-2026-4947"
        }
      ],
      "release_date": "2026-04-08T01:06:58.595000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building"
    },
    {
      "cve": "CVE-2026-32282",
      "cwe": {
        "id": "CWE-367",
        "name": "Time-of-check Time-of-use (TOCTOU) Race Condition"
      },
      "discovery_date": "2026-04-08T02:01:12.683211+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456336"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit this issue, an attacker needs access to the system and the required permissions to create a symbolic link. Additionally, the attacker must swap the target file with a symbolic link in the exact window after the `Root.Chmod` function checks its target but before acting. Due to these conditions, this flaw has been rated with a moderate severity.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456336",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32282",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/763761",
          "url": "https://go.dev/cl/763761"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78293",
          "url": "https://go.dev/issue/78293"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4864",
          "url": "https://pkg.go.dev/vuln/GO-2026-4864"
        }
      ],
      "release_date": "2026-04-08T01:06:55.953000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root"
    },
    {
      "cve": "CVE-2026-32305",
      "cwe": {
        "id": "CWE-179",
        "name": "Incorrect Behavior Order: Early Validation"
      },
      "discovery_date": "2026-03-20T11:02:42.394091+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2449595"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Traefik, an HTTP reverse proxy and load balancer. A remote attacker can exploit this vulnerability by sending fragmented ClientHello packets during the Transport Layer Security (TLS) handshake. This causes Traefik\u0027s Server Name Indication (SNI) extraction to fail, leading to a fallback to a default TLS configuration that does not require client certificates. This allows an attacker to bypass mutual TLS (mTLS) authentication, gaining unauthorized access to services that should be protected by client certificate requirements.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Traefik: github.com/traefik/traefik: Traefik: mTLS bypass allows unauthorized service access via fragmented ClientHello.",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-32305"
        },
        {
          "category": "external",
          "summary": "RHBZ#2449595",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449595"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-32305",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-32305"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32305",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32305"
        },
        {
          "category": "external",
          "summary": "https://github.com/traefik/traefik/releases/tag/v2.11.41",
          "url": "https://github.com/traefik/traefik/releases/tag/v2.11.41"
        },
        {
          "category": "external",
          "summary": "https://github.com/traefik/traefik/releases/tag/v3.6.11",
          "url": "https://github.com/traefik/traefik/releases/tag/v3.6.11"
        },
        {
          "category": "external",
          "summary": "https://github.com/traefik/traefik/releases/tag/v3.7.0-ea.2",
          "url": "https://github.com/traefik/traefik/releases/tag/v3.7.0-ea.2"
        },
        {
          "category": "external",
          "summary": "https://github.com/traefik/traefik/security/advisories/GHSA-wvvq-wgcr-9q48",
          "url": "https://github.com/traefik/traefik/security/advisories/GHSA-wvvq-wgcr-9q48"
        }
      ],
      "release_date": "2026-03-20T10:01:13.620000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        },
        {
          "category": "workaround",
          "details": "To mitigate unauthorized access, restrict network access to the Traefik instance to only trusted clients and networks. Implement firewall rules to limit inbound connections to the ports Traefik listens on for mTLS-protected services. For example, using `firewalld`, specific source IP addresses or networks can be allowed. After applying firewall rules, ensure the firewall service is reloaded for changes to take effect. This reduces the attack surface by preventing untrusted external access to the Traefik instance.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 8.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "Traefik: github.com/traefik/traefik: Traefik: mTLS bypass allows unauthorized service access via fragmented ClientHello."
    },
    {
      "cve": "CVE-2026-33252",
      "cwe": {
        "id": "CWE-940",
        "name": "Improper Verification of Source of a Communication Channel"
      },
      "discovery_date": "2026-03-24T00:01:27.617763+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2450542"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the Go MCP SDK\u0027s Streamable HTTP transport, which uses Go\u0027s standard `encoding/json` package. In deployments without authorization, a remote attacker can exploit this Cross-Site Request Forgery (CSRF) vulnerability. By sending browser-generated cross-site `POST` requests to a local server without proper validation of the `Origin` header or `Content-Type`, an attacker can potentially trigger unauthorized tool execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "encoding/json: golang: github.com/modelcontextprotocol/go-sdk: Go MCP SDK: Remote tool execution via cross-site request forgery",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33252"
        },
        {
          "category": "external",
          "summary": "RHBZ#2450542",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2450542"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33252",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33252"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33252",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33252"
        },
        {
          "category": "external",
          "summary": "https://github.com/modelcontextprotocol/go-sdk/commit/a433a831d6e5d5ac3b9e625a8095aa8eaa040dfc",
          "url": "https://github.com/modelcontextprotocol/go-sdk/commit/a433a831d6e5d5ac3b9e625a8095aa8eaa040dfc"
        },
        {
          "category": "external",
          "summary": "https://github.com/modelcontextprotocol/go-sdk/security/advisories/GHSA-89xv-2j6f-qhc8",
          "url": "https://github.com/modelcontextprotocol/go-sdk/security/advisories/GHSA-89xv-2j6f-qhc8"
        }
      ],
      "release_date": "2026-03-23T23:44:16.106000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        },
        {
          "category": "workaround",
          "details": "To mitigate this vulnerability, ensure that deployments utilizing the Go MCP SDK are configured with proper authorization mechanisms. This prevents unauthorized cross-site requests from triggering tool execution. Additionally, restrict network access to the local server running the SDK to trusted sources only, using firewall rules to limit exposure.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:L",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "encoding/json: golang: github.com/modelcontextprotocol/go-sdk: Go MCP SDK: Remote tool execution via cross-site request forgery"
    },
    {
      "cve": "CVE-2026-33810",
      "cwe": {
        "id": "CWE-1289",
        "name": "Improper Validation of Unsafe Equivalence in Input"
      },
      "discovery_date": "2026-04-08T02:01:09.100830+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2456335"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "RHBZ#2456335",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456335"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-33810",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/763763",
          "url": "https://go.dev/cl/763763"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/78332",
          "url": "https://go.dev/issue/78332"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
          "url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2026-4866",
          "url": "https://pkg.go.dev/vuln/GO-2026-4866"
        }
      ],
      "release_date": "2026-04-08T01:06:56.546000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application"
    },
    {
      "cve": "CVE-2026-34742",
      "cwe": {
        "id": "CWE-1188",
        "name": "Initialization of a Resource with an Insecure Default"
      },
      "discovery_date": "2026-04-02T19:06:39.830253+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2454608"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the Model Context Protocol (MCP) Go SDK. When an HTTP-based MCP server is run on localhost without authentication, a malicious website can exploit a DNS rebinding vulnerability. This allows the attacker to bypass same-origin policy restrictions and send requests to the local MCP server. Consequently, an attacker could invoke tools or access resources exposed by the MCP server on behalf of the user.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "github.com/modelcontextprotocol/go-sdk: Model Context Protocol (MCP) Go SDK: DNS rebinding vulnerability allows unauthorized access",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-34742"
        },
        {
          "category": "external",
          "summary": "RHBZ#2454608",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2454608"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-34742",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-34742"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-34742",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34742"
        },
        {
          "category": "external",
          "summary": "https://github.com/modelcontextprotocol/go-sdk/commit/67bd3f2e2b53ce11a16db8d976cdb8ff1e986b6d",
          "url": "https://github.com/modelcontextprotocol/go-sdk/commit/67bd3f2e2b53ce11a16db8d976cdb8ff1e986b6d"
        },
        {
          "category": "external",
          "summary": "https://github.com/modelcontextprotocol/go-sdk/pull/760",
          "url": "https://github.com/modelcontextprotocol/go-sdk/pull/760"
        },
        {
          "category": "external",
          "summary": "https://github.com/modelcontextprotocol/go-sdk/releases/tag/v1.4.0",
          "url": "https://github.com/modelcontextprotocol/go-sdk/releases/tag/v1.4.0"
        },
        {
          "category": "external",
          "summary": "https://github.com/modelcontextprotocol/go-sdk/security/advisories/GHSA-xw59-hvm2-8pj6",
          "url": "https://github.com/modelcontextprotocol/go-sdk/security/advisories/GHSA-xw59-hvm2-8pj6"
        }
      ],
      "release_date": "2026-04-02T18:32:34.781000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 8.0,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "github.com/modelcontextprotocol/go-sdk: Model Context Protocol (MCP) Go SDK: DNS rebinding vulnerability allows unauthorized access"
    },
    {
      "cve": "CVE-2026-35051",
      "cwe": {
        "id": "CWE-501",
        "name": "Trust Boundary Violation"
      },
      "discovery_date": "2026-04-30T21:01:28.437993+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2464235"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Traefik, an HTTP reverse proxy and load balancer. This authentication bypass vulnerability exists in Traefik\u0027s ForwardAuth middleware when the `trustForwardHeader` setting is configured as `false` and Traefik is deployed behind a trusted upstream proxy. A remote attacker could exploit this to bypass authentication, potentially gaining unauthorized access to protected resources.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Traefik: github.com/traefik/traefik: Traefik: Authentication bypass in ForwardAuth middleware",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-35051"
        },
        {
          "category": "external",
          "summary": "RHBZ#2464235",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2464235"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-35051",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-35051"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-35051",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-35051"
        },
        {
          "category": "external",
          "summary": "https://github.com/traefik/traefik/releases/tag/v2.11.43",
          "url": "https://github.com/traefik/traefik/releases/tag/v2.11.43"
        },
        {
          "category": "external",
          "summary": "https://github.com/traefik/traefik/releases/tag/v3.6.14",
          "url": "https://github.com/traefik/traefik/releases/tag/v3.6.14"
        },
        {
          "category": "external",
          "summary": "https://github.com/traefik/traefik/releases/tag/v3.7.0-rc.2",
          "url": "https://github.com/traefik/traefik/releases/tag/v3.7.0-rc.2"
        },
        {
          "category": "external",
          "summary": "https://github.com/traefik/traefik/security/advisories/GHSA-6384-m2mw-rf54",
          "url": "https://github.com/traefik/traefik/security/advisories/GHSA-6384-m2mw-rf54"
        }
      ],
      "release_date": "2026-04-30T20:26:06.716000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        },
        {
          "category": "workaround",
          "details": "To mitigate this issue, ensure that the `trustForwardHeader` setting in Traefik\u0027s ForwardAuth middleware is not explicitly configured as `false` unless absolutely necessary. If Traefik is deployed behind a trusted upstream proxy, review the configuration to ensure that `trustForwardHeader` is either set to `true` or omitted, allowing Traefik to correctly process forwarded headers for authentication. If this configuration is modified, a restart or reload of the Traefik service may be required for the changes to take effect.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "Traefik: github.com/traefik/traefik: Traefik: Authentication bypass in ForwardAuth middleware"
    },
    {
      "cve": "CVE-2026-39858",
      "cwe": {
        "id": "CWE-289",
        "name": "Authentication Bypass by Alternate Name"
      },
      "discovery_date": "2026-04-30T21:01:23.755037+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2464234"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Traefik. A remote attacker can exploit an authentication bypass vulnerability by injecting spoofed trust context through unsanitized alias headers. This is due to Traefik\u0027s forwarded-header sanitization logic not properly handling alias header names that use underscores instead of dashes. This allows an attacker to bypass authentication on protected routes without valid credentials.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "traefik: Traefik: Authentication bypass via unsanitized alias headers",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-39858"
        },
        {
          "category": "external",
          "summary": "RHBZ#2464234",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2464234"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-39858",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-39858"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-39858",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-39858"
        },
        {
          "category": "external",
          "summary": "https://github.com/traefik/traefik/releases/tag/v2.11.43",
          "url": "https://github.com/traefik/traefik/releases/tag/v2.11.43"
        },
        {
          "category": "external",
          "summary": "https://github.com/traefik/traefik/releases/tag/v3.6.14",
          "url": "https://github.com/traefik/traefik/releases/tag/v3.6.14"
        },
        {
          "category": "external",
          "summary": "https://github.com/traefik/traefik/releases/tag/v3.7.0-rc.2",
          "url": "https://github.com/traefik/traefik/releases/tag/v3.7.0-rc.2"
        },
        {
          "category": "external",
          "summary": "https://github.com/traefik/traefik/security/advisories/GHSA-5m6w-wvh7-57vm",
          "url": "https://github.com/traefik/traefik/security/advisories/GHSA-5m6w-wvh7-57vm"
        }
      ],
      "release_date": "2026-04-30T20:26:26.300000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "traefik: Traefik: Authentication bypass via unsanitized alias headers"
    },
    {
      "cve": "CVE-2026-40477",
      "cwe": {
        "id": "CWE-917",
        "name": "Improper Neutralization of Special Elements used in an Expression Language Statement (\u0027Expression Language Injection\u0027)"
      },
      "discovery_date": "2026-04-17T23:00:52.793546+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2459344"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Thymeleaf, a server-side Java template engine. An unauthenticated remote attacker can exploit a security bypass vulnerability in the expression execution mechanisms. By providing unvalidated user input directly to the template engine, the attacker can bypass the library\u0027s protections, leading to Server-Side Template Injection (SSTI). This allows access to potentially sensitive objects from within a template.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "thymeleaf: Thymeleaf: Server-Side Template Injection via security bypass in expression execution",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-40477"
        },
        {
          "category": "external",
          "summary": "RHBZ#2459344",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2459344"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-40477",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-40477"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-40477",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-40477"
        },
        {
          "category": "external",
          "summary": "https://github.com/thymeleaf/thymeleaf/security/advisories/GHSA-r4v4-5mwr-2fwr",
          "url": "https://github.com/thymeleaf/thymeleaf/security/advisories/GHSA-r4v4-5mwr-2fwr"
        }
      ],
      "release_date": "2026-04-17T21:53:47.271000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "thymeleaf: Thymeleaf: Server-Side Template Injection via security bypass in expression execution"
    },
    {
      "cve": "CVE-2026-40478",
      "cwe": {
        "id": "CWE-917",
        "name": "Improper Neutralization of Special Elements used in an Expression Language Statement (\u0027Expression Language Injection\u0027)"
      },
      "discovery_date": "2026-04-17T23:01:08.580532+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2459349"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Thymeleaf, a server-side Java template engine. An unauthenticated remote attacker can exploit this vulnerability by providing unvalidated user input to the template engine. This bypasses existing security mechanisms, allowing for the execution of unauthorized expressions and leading to Server-Side Template Injection (SSTI).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "thymeleaf: Thymeleaf: Server-Side Template Injection via expression execution bypass",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-40478"
        },
        {
          "category": "external",
          "summary": "RHBZ#2459349",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2459349"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-40478",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-40478"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-40478",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-40478"
        },
        {
          "category": "external",
          "summary": "https://github.com/thymeleaf/thymeleaf/security/advisories/GHSA-xjw8-8c5c-9r79",
          "url": "https://github.com/thymeleaf/thymeleaf/security/advisories/GHSA-xjw8-8c5c-9r79"
        }
      ],
      "release_date": "2026-04-17T21:57:01.560000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        },
        {
          "category": "workaround",
          "details": "The vulnerability arises when unvalidated user input is directly passed to the Thymeleaf template engine. To mitigate this, application developers should implement robust input validation and sanitization for all user-supplied data before it is processed by the Thymeleaf template engine. This ensures that malicious expressions cannot be executed.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "thymeleaf: Thymeleaf: Server-Side Template Injection via expression execution bypass"
    },
    {
      "cve": "CVE-2026-40611",
      "cwe": {
        "id": "CWE-22",
        "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
      },
      "discovery_date": "2026-04-21T20:01:57.383011+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2460233"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in lego, the Let\u0027s Encrypt client and ACME library written in Go. A malicious ACME (Automated Certificate Management Environment) server can exploit a path traversal vulnerability in the webroot HTTP-01 challenge provider. By supplying a specially crafted challenge token containing directory traversal sequences, the server can cause lego to write or delete files in arbitrary locations on the system where lego is running, potentially leading to system compromise.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "github.com/go-acme/lego: Lego: Arbitrary file write and deletion via path traversal from a malicious ACME server",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The `lego` client, utilized in Red Hat OpenShift Dev Spaces, is susceptible to a path traversal vulnerability within its webroot HTTP-01 challenge provider. A malicious ACME server could exploit this flaw by sending a specially crafted challenge token, enabling arbitrary file write or deletion on the system running `lego`. The impact of this flaw is directly limited to the level of privileges the process running the `lego` client has, since the attacker would be able to create, write or delete only files that the lego\u0027s running UID has permission to perform the analogue operation.\n\nTo exploit this vulnerability the user needs to be tricked to connect to a malicious ACME server or the attacker needs to firstly compromise the ACME server to send the crafted challenge token in order to trigger the path traversal vulnerability.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-40611"
        },
        {
          "category": "external",
          "summary": "RHBZ#2460233",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460233"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-40611",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-40611"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-40611",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-40611"
        },
        {
          "category": "external",
          "summary": "https://github.com/go-acme/lego/security/advisories/GHSA-qqx8-2xmm-jrv8",
          "url": "https://github.com/go-acme/lego/security/advisories/GHSA-qqx8-2xmm-jrv8"
        }
      ],
      "release_date": "2026-04-21T17:58:35.221000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        },
        {
          "category": "workaround",
          "details": "To mitigate this issue, ensure that the `lego` client only interacts with trusted ACME servers. Additionally, run the `lego` process with the least necessary privileges and in a restricted environment to limit the potential impact of arbitrary file operations. This may involve containerization or specific filesystem access controls.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "github.com/go-acme/lego: Lego: Arbitrary file write and deletion via path traversal from a malicious ACME server"
    },
    {
      "cve": "CVE-2026-40895",
      "cwe": {
        "id": "CWE-212",
        "name": "Improper Removal of Sensitive Information Before Storage or Transfer"
      },
      "discovery_date": "2026-04-21T21:02:33.280553+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2460297"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in follow-redirects. When an HTTP request follows a cross-domain redirect (a redirection to a different domain), custom authentication headers, such as X-API-Key or X-Auth-Token, are not properly stripped. This allows these sensitive headers to be forwarded verbatim to the redirect target, potentially leading to the unintended disclosure of authentication information to an untrusted third party.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "follow-redirects: follow-redirects: Information disclosure via cross-domain redirects",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-40895"
        },
        {
          "category": "external",
          "summary": "RHBZ#2460297",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2460297"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-40895",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-40895"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-40895",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-40895"
        },
        {
          "category": "external",
          "summary": "https://github.com/follow-redirects/follow-redirects/security/advisories/GHSA-r4q5-vmmm-2653",
          "url": "https://github.com/follow-redirects/follow-redirects/security/advisories/GHSA-r4q5-vmmm-2653"
        }
      ],
      "release_date": "2026-04-21T19:59:59.759000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "follow-redirects: follow-redirects: Information disclosure via cross-domain redirects"
    },
    {
      "cve": "CVE-2026-40912",
      "cwe": {
        "id": "CWE-22",
        "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
      },
      "discovery_date": "2026-04-30T21:01:06.544377+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2464229"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Traefik, an HTTP reverse proxy and load balancer. This authentication bypass vulnerability allows an unauthenticated attacker to access protected content. The flaw occurs when the StripPrefixRegex middleware is used with authentication mechanisms such as ForwardAuth, BasicAuth, or DigestAuth. By crafting a specific URL with dot-segments, an attacker can bypass authentication checks and gain unauthorized access to sensitive resources.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "github.com/traefik/traefik: Traefik: Authentication bypass via crafted URL dot-segments in StripPrefixRegex middleware",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-40912"
        },
        {
          "category": "external",
          "summary": "RHBZ#2464229",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2464229"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-40912",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-40912"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-40912",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-40912"
        },
        {
          "category": "external",
          "summary": "https://github.com/traefik/traefik/releases/tag/v2.11.43",
          "url": "https://github.com/traefik/traefik/releases/tag/v2.11.43"
        },
        {
          "category": "external",
          "summary": "https://github.com/traefik/traefik/releases/tag/v3.6.14",
          "url": "https://github.com/traefik/traefik/releases/tag/v3.6.14"
        },
        {
          "category": "external",
          "summary": "https://github.com/traefik/traefik/releases/tag/v3.7.0-rc.2",
          "url": "https://github.com/traefik/traefik/releases/tag/v3.7.0-rc.2"
        },
        {
          "category": "external",
          "summary": "https://github.com/traefik/traefik/security/advisories/GHSA-6jwx-7vp4-9847",
          "url": "https://github.com/traefik/traefik/security/advisories/GHSA-6jwx-7vp4-9847"
        }
      ],
      "release_date": "2026-04-30T20:38:21.969000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 8.6,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "github.com/traefik/traefik: Traefik: Authentication bypass via crafted URL dot-segments in StripPrefixRegex middleware"
    },
    {
      "cve": "CVE-2026-40972",
      "cwe": {
        "id": "CWE-208",
        "name": "Observable Timing Discrepancy"
      },
      "discovery_date": "2026-04-28T00:02:02.075124+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2463332"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Spring Boot. An attacker on the same network as the remote application may be able to utilize a timing attack to discover information about a remote secret. In extreme circumstances, this could allow the attacker to determine the secret and upload changed classes, leading to remote code execution in the remote application.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Spring Boot: Spring Boot: Remote code execution via timing attack in DevTools remote secret comparison",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-40972"
        },
        {
          "category": "external",
          "summary": "RHBZ#2463332",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2463332"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-40972",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-40972"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-40972",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-40972"
        },
        {
          "category": "external",
          "summary": "https://spring.io/security/cve-2026-40972",
          "url": "https://spring.io/security/cve-2026-40972"
        }
      ],
      "release_date": "2026-04-27T23:15:19.194000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        },
        {
          "category": "workaround",
          "details": "To mitigate this issue, disable the Spring Boot DevTools remote functionality in production environments. This feature is primarily intended for development and should not be enabled in publicly accessible deployments.\n\nTo disable remote DevTools, ensure the `spring.devtools.remote.secret` property is not configured, or explicitly set `spring.devtools.remote.enabled=false` in your application\u0027s `application.properties` or `application.yml` file.\n\nExample for `application.properties`:\n`spring.devtools.remote.enabled=false`\n\nDisabling this feature may impact development workflows that rely on remote DevTools capabilities. A restart of the application is required for the changes to take effect.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "ADJACENT_NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "Spring Boot: Spring Boot: Remote code execution via timing attack in DevTools remote secret comparison"
    },
    {
      "cve": "CVE-2026-40973",
      "cwe": {
        "id": "CWE-341",
        "name": "Predictable from Observable State"
      },
      "discovery_date": "2026-04-28T00:01:55.408040+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2463330"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Spring Boot. A local attacker on the same host as the application may be able to take control of the `ApplicationTemp` directory due to predictable temporary directory handling. When the `server.servlet.session.persistent` setting is enabled and the attack persists across application restarts, this could allow the attacker to read session information, hijack authenticated user sessions, or execute arbitrary code as the application\u0027s user.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Spring Boot: Spring Boot: Arbitrary Code Execution and Session Hijacking via predictable temporary directory",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-40973"
        },
        {
          "category": "external",
          "summary": "RHBZ#2463330",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2463330"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-40973",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-40973"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-40973",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-40973"
        },
        {
          "category": "external",
          "summary": "https://spring.io/security/cve-2026-40973",
          "url": "https://spring.io/security/cve-2026-40973"
        }
      ],
      "release_date": "2026-04-27T23:29:51.946000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        },
        {
          "category": "workaround",
          "details": "To mitigate this issue, ensure that the `server.servlet.session.persistent` property is set to `false` in your Spring Boot application\u0027s configuration. This prevents session information from being written to the predictable temporary directory, thereby removing the conditions necessary for exploitation. Disabling persistent sessions may affect application behavior that relies on session data surviving restarts.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.0,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "Spring Boot: Spring Boot: Arbitrary Code Execution and Session Hijacking via predictable temporary directory"
    },
    {
      "cve": "CVE-2026-40975",
      "cwe": {
        "id": "CWE-338",
        "name": "Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)"
      },
      "discovery_date": "2026-04-28T00:01:58.716976+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2463331"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Spring Boot. The `${random.value}` property source utilizes a weak pseudo-random number generator (PRNG), meaning the values it produces are not sufficiently random for use as cryptographic secrets. An attacker could potentially predict these values, which may lead to information disclosure or a security bypass if they are used in sensitive applications.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Spring Boot: Spring Boot: Weak pseudo-random number generation can lead to information disclosure.",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-40975"
        },
        {
          "category": "external",
          "summary": "RHBZ#2463331",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2463331"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-40975",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-40975"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-40975",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-40975"
        },
        {
          "category": "external",
          "summary": "https://spring.io/security/cve-2026-40975",
          "url": "https://spring.io/security/cve-2026-40975"
        }
      ],
      "release_date": "2026-04-27T23:32:58.596000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        },
        {
          "category": "workaround",
          "details": "Applications utilizing Spring Boot should avoid using the `${random.value}` property for generating cryptographic secrets or other security-sensitive data. Developers should review their application configurations and code to ensure that only cryptographically strong random number generators are used for such purposes. For UUID generation, `${random.uuid}` is not affected and can be used.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "Spring Boot: Spring Boot: Weak pseudo-random number generation can lead to information disclosure."
    },
    {
      "cve": "CVE-2026-41240",
      "cwe": {
        "id": "CWE-79",
        "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
      },
      "discovery_date": "2026-04-23T16:04:41.751666+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2461147"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in DOMPurify, a DOM-only cross-site scripting sanitizer. A remote attacker could exploit an inconsistency in how forbidden tags and attributes are handled when function-based tag additions are used. This allows malicious HTML, MathML, or SVG elements to bypass sanitization and execute arbitrary code in the user\u0027s browser, leading to Cross-Site Scripting (XSS).",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "DOMPurify: DOMPurify: Cross-Site Scripting (XSS) via inconsistent tag sanitization",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-41240"
        },
        {
          "category": "external",
          "summary": "RHBZ#2461147",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2461147"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-41240",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-41240"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-41240",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-41240"
        },
        {
          "category": "external",
          "summary": "https://github.com/cure53/DOMPurify/commit/c361baa18dbdcb3344a41110f4c48ad85bf48f80",
          "url": "https://github.com/cure53/DOMPurify/commit/c361baa18dbdcb3344a41110f4c48ad85bf48f80"
        },
        {
          "category": "external",
          "summary": "https://github.com/cure53/DOMPurify/releases/tag/3.4.0",
          "url": "https://github.com/cure53/DOMPurify/releases/tag/3.4.0"
        },
        {
          "category": "external",
          "summary": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-h7mw-gpvr-xq4m",
          "url": "https://github.com/cure53/DOMPurify/security/advisories/GHSA-h7mw-gpvr-xq4m"
        }
      ],
      "release_date": "2026-04-23T14:54:32.426000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "DOMPurify: DOMPurify: Cross-Site Scripting (XSS) via inconsistent tag sanitization"
    },
    {
      "cve": "CVE-2026-42033",
      "cwe": {
        "id": "CWE-915",
        "name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes"
      },
      "discovery_date": "2026-04-24T18:01:20.937507+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2461607"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Axios, an HTTP client library. This vulnerability allows an attacker to exploit a prototype pollution issue if another part of the application has already polluted the Object.prototype. By doing so, the attacker can intercept and modify JSON responses or take control of the HTTP communication. This could lead to unauthorized access to sensitive information like user credentials and request details.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "axios: Axios: HTTP Transport Hijacking via Prototype Pollution",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-42033"
        },
        {
          "category": "external",
          "summary": "RHBZ#2461607",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2461607"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-42033",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-42033"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42033",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42033"
        },
        {
          "category": "external",
          "summary": "https://github.com/axios/axios/security/advisories/GHSA-pf86-5x62-jrwf",
          "url": "https://github.com/axios/axios/security/advisories/GHSA-pf86-5x62-jrwf"
        }
      ],
      "release_date": "2026-04-24T17:36:44.132000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "axios: Axios: HTTP Transport Hijacking via Prototype Pollution"
    },
    {
      "cve": "CVE-2026-42035",
      "cwe": {
        "id": "CWE-915",
        "name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes"
      },
      "discovery_date": "2026-04-24T18:01:17.109481+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2461606"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Axios, a software library for making network requests. A remote attacker can exploit a prototype pollution vulnerability to inject arbitrary HTTP headers into outgoing requests. This occurs when the application\u0027s core object definitions are manipulated, causing Axios to misinterpret data and include attacker-controlled headers in network communications. This could lead to unauthorized actions or data manipulation.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "axios: Axios: Arbitrary HTTP header injection via prototype pollution",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-42035"
        },
        {
          "category": "external",
          "summary": "RHBZ#2461606",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2461606"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-42035",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-42035"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42035",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42035"
        },
        {
          "category": "external",
          "summary": "https://github.com/axios/axios/security/advisories/GHSA-6chq-wfr3-2hj9",
          "url": "https://github.com/axios/axios/security/advisories/GHSA-6chq-wfr3-2hj9"
        }
      ],
      "release_date": "2026-04-24T17:38:07.752000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "axios: Axios: Arbitrary HTTP header injection via prototype pollution"
    },
    {
      "cve": "CVE-2026-42039",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2026-04-24T19:01:44.887156+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2461630"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Axios, a promise-based HTTP client for browsers and Node.js. This vulnerability occurs because the `toFormData` function recursively processes nested objects without a depth limit. A remote attacker can exploit this by sending deeply nested request data, which causes the Node.js process to crash due to a RangeError, leading to a potential Denial of Service (DoS) if the process crashes.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "axios: Node.js: Axios: Denial of Service via unbounded recursion in toFormData with deeply nested request data",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-42039"
        },
        {
          "category": "external",
          "summary": "RHBZ#2461630",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2461630"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-42039",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-42039"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42039",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42039"
        },
        {
          "category": "external",
          "summary": "https://github.com/axios/axios/security/advisories/GHSA-62hf-57xw-28j9",
          "url": "https://github.com/axios/axios/security/advisories/GHSA-62hf-57xw-28j9"
        }
      ],
      "release_date": "2026-04-24T18:01:30.775000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "axios: Node.js: Axios: Denial of Service via unbounded recursion in toFormData with deeply nested request data"
    },
    {
      "cve": "CVE-2026-42041",
      "cwe": {
        "id": "CWE-915",
        "name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes"
      },
      "discovery_date": "2026-04-24T19:01:41.034289+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2461629"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Axios, a promise-based HTTP client. This vulnerability, a Prototype Pollution \"Gadget\" attack, allows an attacker to manipulate the `Object.prototype.validateStatus` property. By polluting this property, all HTTP error responses (such as 401, 403, or 500) are silently treated as successful responses. This can lead to a complete bypass of application-level authentication and error handling, potentially granting unauthorized access.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "axios: Axios: Authentication bypass due to prototype pollution of HTTP error handling",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-42041"
        },
        {
          "category": "external",
          "summary": "RHBZ#2461629",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2461629"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-42041",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-42041"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42041",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42041"
        },
        {
          "category": "external",
          "summary": "https://github.com/axios/axios/security/advisories/GHSA-w9j2-pvgh-6h63",
          "url": "https://github.com/axios/axios/security/advisories/GHSA-w9j2-pvgh-6h63"
        }
      ],
      "release_date": "2026-04-24T17:55:30.036000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "axios: Axios: Authentication bypass due to prototype pollution of HTTP error handling"
    },
    {
      "cve": "CVE-2026-42043",
      "cwe": {
        "id": "CWE-918",
        "name": "Server-Side Request Forgery (SSRF)"
      },
      "discovery_date": "2026-04-24T19:01:22.552379+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2461626"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Axios, a promise-based HTTP client. An attacker who can control the destination address of an Axios request can exploit this vulnerability. By using specific internal network addresses (within the 127.0.0.0/8 range, excluding 127.0.0.1), the attacker can completely bypass the NO_PROXY protection, potentially leading to unauthorized access or information disclosure within the network. This issue is an incomplete fix for a previous vulnerability.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "axios: Axios: NO_PROXY bypass via crafted URL",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-42043"
        },
        {
          "category": "external",
          "summary": "RHBZ#2461626",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2461626"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-42043",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-42043"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42043",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42043"
        },
        {
          "category": "external",
          "summary": "https://github.com/axios/axios/security/advisories/GHSA-pmwg-cvhr-8vh7",
          "url": "https://github.com/axios/axios/security/advisories/GHSA-pmwg-cvhr-8vh7"
        }
      ],
      "release_date": "2026-04-24T17:54:42.668000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.2,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "axios: Axios: NO_PROXY bypass via crafted URL"
    },
    {
      "cve": "CVE-2026-42044",
      "cwe": {
        "id": "CWE-915",
        "name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes"
      },
      "discovery_date": "2026-04-24T19:01:13.418725+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2461624"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in Axios, a widely used HTTP client. This vulnerability, known as a Prototype Pollution \"Gadget\" attack, allows a remote attacker to subtly alter JSON API responses. By manipulating a specific function, an attacker can selectively modify data within these responses. This could lead to significant security breaches, including unauthorized privilege escalation, fraudulent balance manipulation, or bypassing critical authorization checks.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "axios: Axios: Invisible JSON Response Tampering via Prototype Pollution Gadget",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64"
        ],
        "known_not_affected": [
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
          "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2026-42044"
        },
        {
          "category": "external",
          "summary": "RHBZ#2461624",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2461624"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2026-42044",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-42044"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42044",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42044"
        },
        {
          "category": "external",
          "summary": "https://github.com/axios/axios/security/advisories/GHSA-3w6x-2g7m-8v23",
          "url": "https://github.com/axios/axios/security/advisories/GHSA-3w6x-2g7m-8v23"
        }
      ],
      "release_date": "2026-04-24T17:49:49.517000+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2026-05-28T21:29:20+00:00",
          "details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2026:21772"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
          "product_ids": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:b86a03ffcc1fc359116cc0ca231c64e5d612f047d41b5a2d44d1f3a9d880c14b_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cbe05937b330c830b280fcde70ddc04e76fc01770f519db54385e62d3cdc4365_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:cc5228f1a81ab52552eff2f4b4147affa898ffa429a49f7fb47ca394e892c482_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-rhel9@sha256:d752b1a872d03c454c7a2e8a6141fe41df0a62d5e968be7a69f0203fefcb6559_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1a5fb68c1f62c66f2d62c3b6a3ef48ed902e59307b1a9e50c658132ee870f3cd_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:1d42bcfcf3be9fdb75625eb17ecc7b05d311ceb7e5db9b64a61b957a0dac2017_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:20e1309511f84fb268d23fc50ef0756dfc4fdb917b6647e6b09c24d59439288d_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/code-sshd-rhel9@sha256:a47056a230633c885e68ec24f4a0827e6ed6e295a16ab03ee7a4ef5ea1064254_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:4805d4c6d4c2d53d3515ad28ac35c6360413bef3dc5399ce328449b16bcac729_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:561ca113c28e37b1753d902d2f42dc698bfcbbc2f2e3eb5e0b4d549fb5593309_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:64e5a7d8b8ea5d4f4e9248ffe5ff1235897a6fb799e9ae80cc321730c6173b1a_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/configbump-rhel9@sha256:ae093c3335e1d3ebc56814a7482cf5783e6bf5bfab536b1e04dd88a74a8260e4_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:0f5532354d096fca2b4b51e1184c5d219d9c51880873482437ddf64c197ceb1f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:adea9256b3e9ff929f054325d167c4412c61d2d0e89b5975d751c261a3985414_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:e10099e6dec84dd608b95679315fd09d6a8c377f57dabf68f5b3e1fdb12a10e5_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/dashboard-rhel9@sha256:fd8259ec2fe8fe72432e32186b2319bc0ef5eb1d25092b66b8f65dda04e783ac_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-operator-bundle@sha256:aea41739b819bbf8d1bfbb67d82606f651c196fa31e44a55df0c54b9bbaba589_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:0abb9413b448c31440bf42cdd876174b1534043011a68842c95d18baca978b65_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:32489db0d434bcd83578d77acb7c3e8cbbcb7458ffe47bc003423df9b2437133_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:586e3c00134033b5371c6eb5c839c65c89e7833918122db6ad6de7b286caf2da_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/devspaces-rhel9-operator@sha256:f53eafc9e43fca96bad5352706b791476164902cf53261437642da9352b9e121_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:c694a1979337f1666efdc017209e7b3a77b9639f823086ce907c166f6120fa71_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:ce0df59b0323f22f213488878123cbce067b946a2ea600e9fc6d26f2ac9ad12e_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:d9e4872d43f955438cd3f7bd7bc1498941e6e830ea156781f066fdd8ee892d8e_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/imagepuller-rhel9@sha256:efd2d59a47a3507c3cdbd8e890c6d9a0c868025659fccc67d3f718253fede591_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:1c79ec491dbdcb2dcd861df09d8cadb3b6db3743b614b65301020f4a2f6d39dd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2babef463b6f97f7befd13ea628baae2d4d893cc9f81158ff91d82cca428d801_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:2d4c066361ac0ba3b0113a03d1b8710d9fe96b666f090853ed9a5bf8bd5aadea_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/jetbrains-ide-rhel9@sha256:d23f8c49b65d7f605c661c01183e2da4fa7ea6c34aa69a9d9b7f552aeb759945_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:49e24bc1bd333713715af7930958a6b01a595ff6320742c7c485f441e6385eb2_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:4f77d16fd69ef14da0a96ea0f0e05ca331fcfa5c88df7b51a5c8d95e86bdb913_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:7296dbe969621fa457003014943f4a109e913dfef63def00ac079eb700b51ecd_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/multicluster-redirector-rhel9@sha256:ad3122a7a3fe50239ada2ef6ae9e085c6cf76baa1376fdcff3829d759a1064f3_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:341c8f0f91bd41d4bded00443cd7ab2ddab4972a5ee1ddff4dcbfcdd5c2764f4_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:94d4124c7884916fbce4af4655b8a5eef5b62df6a21afabf6461bbb898d895b9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:e9eef99fc45b2ce06fadacf3db85e6e2f1fbabb16afc250929387ce2589732c3_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/openvsx-rhel9@sha256:fe8c450b4f48bd6935495464a3c2a7bfcf29e2bee04d44f9e60344351c49b049_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:5f22f4a4c2de62f4569dcfbdf3650edc51aacee3b4cb6c49c87b25c6bf530b6c_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:82fe544aa4f03ca665ad23acbb5472032ccdb04fc9e96d77b3b8e764e544f846_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:d0250c5ec7cd6f6a1584680bb23a9b86c7791a8b8176561b9d093301d41a6218_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/pluginregistry-rhel9@sha256:e16a96851641fe2f7a92889a3ca6e8357d4a8f762bdd5b6116332965fdbd3a19_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0ba5969eb9013d9d44e20c12fe0a510cf38ca6948ce1d61e087f4cb527044d72_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:0e2ef986cf3ec33b9df0ef362570fd536b2805da20d0e99b6fb25b053235d117_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:7868955f9a0266eb48a93cfb965e08fd8171a1e26f46c1e172e27cbd5db9a34f_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/server-rhel9@sha256:811c26489ddc1729faa31a91a4a1ca7f6486e3aec6b846f7d9cb3c353ac2fa50_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:3485ff167c400ce15935150104f4a3cf430bcf12cbf29f9b34674a94d381b7d6_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:36af8b9a1a82fb3f1db23701ba3c1d28c0e8d517e0b2c5f15802c30ed38335ff_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:992ea99b0f70663a8409fce0e498044cee5d09e379f45986602c3c9a10a664ba_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/traefik-rhel9@sha256:aedada1f3dc1aae7c0314be8f91dcb55f2334dba587b274a0e51e12aa082287b_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:852bbc356fb837fd973beadc9394a528be22c6ed38810aec821e7fba15fbb059_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:9fef848f79f7157c9eb8433f7ffe25d7c6077bcfbb33aa7f6f773c5b39ae0f80_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:b03208e52022e91dd863090b47da35bea4ea1c4c835d30bbf49e2d7e589895b8_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel10@sha256:cc4113bcb89360970fd57421849664a8db402be0c55ebabef47a01724c7e36f2_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:35f3dd8ce6c805bd624df77da6788be8655cd934d9a307060608459f7a9249d8_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:6c6c03f1630e51959a47f2b3f24004c6d871f7035afd720e8ec6ea2c7f2173f9_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:ba654706ac34dcedfd1ca31f3e77190d598e5d54d19c1b8d7eae8f67a924eef7_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-base-rhel9@sha256:dc74ddfbd325e06a2245681854942b461ab6eb919d1f2de62e4c89403e1ef8a1_amd64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:09d59e6aa6fb229afdebe446d5de28255af78bcfae328edfbd57b83e81b31557_ppc64le",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:977387ccbda9f2a6de9bcabd4256c2194e7e21dbdbaca842be4c37afd55b268f_arm64",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:d991c0ebd75cdd80cf18c4798b28c2b83a4962d7dc704d47d78e83439774c0e5_s390x",
            "Red Hat OpenShift Dev Spaces 3.28:registry.redhat.io/devspaces/udi-rhel9@sha256:f038896c7e017a505e47d7d30aae8dea85d4573e271e41664e3bb020c3bd2be6_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "axios: Axios: Invisible JSON Response Tampering via Prototype Pollution Gadget"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2026-33810 (GCVE-0-2026-33810)

Tags

Sightings

Nomenclature