A flaw was found in Red Hat Single Sign-On for OpenShift container images, which are configured with an unsecured management interface enabled. This flaw allows an attacker to use this interface to deploy malicious code and access and modify potentially sensitive information in the app server configuration.
References
Link | Resource |
---|---|
https://access.redhat.com/errata/RHSA-2023:1047 | Vendor Advisory |
https://access.redhat.com/security/cve/CVE-2022-4039 | Vendor Advisory |
https://bugzilla.redhat.com/show_bug.cgi?id=2143416 | Issue Tracking Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2023-09-22T14:00:39.803Z
Updated: 2024-05-03T15:32:26.579Z
Reserved: 2022-11-16T21:32:53.153Z
Link: CVE-2022-4039
JSON object: View
NVD Information
Status : Modified
Published: 2023-09-22T15:15:09.847
Modified: 2023-11-07T03:56:46.790
Link: CVE-2022-4039
JSON object: View
Redhat Information
No data.
CWE