Red Hat Service Interconnect 1.0

CPE Details

Red Hat Service Interconnect 1.0
redhat
service_interconnect
1.0
2023-10-25
03h38 +00:00
2023-10-25
03h38 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:redhat:service_interconnect:1.0:*:*:*:*:*:*:*

Informations

Vendor

redhat

Product

service_interconnect

Version

1.0

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2024-6535 2024-07-17 02h25 +00:00 A flaw was found in Skupper. When Skupper is initialized with the console-enabled and with console-auth set to Openshift, it configures the openshift oauth-proxy with a static cookie-secret. In certain circumstances, this may allow an attacker to bypass authentication to the Skupper console via a specially-crafted cookie.
5.3
Medium
CVE-2023-5056 2023-12-18 13h43 +00:00 A flaw was found in the Skupper operator, which may permit a certain configuration to create a service account that would allow an authenticated attacker in the adjacent cluster to view deployments in all namespaces in the cluster. This issue permits unauthorized viewing of information outside of the user's purview.
6.8
Medium
CVE-2023-44487 2023-10-10 00h00 +00:00 The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
7.5
High