CVE-2024-0793 - Vulnerability Details

A flaw was found in kube-controller-manager. This issue occurs when the initial application of a HPA config YAML lacking a .spec.behavior.scaleUp block causes a denial of service due to KCM pods going into restart churn.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Changed

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00136.

Exploitation none

Automatable no

Technical Impact partial

Vendors	Products
Redhat	Openshift

No data.

Package	CPE	Advisory	Released Date
Red Hat OpenShift Container Platform 4.12
openshift-0:4.12.0-202403042037.p0.g9946c63.assembly.stream.el9	cpe:/a:redhat:openshift:4.12::el8	RHSA-2024:1267	2024-03-20T00:00:00Z
Red Hat OpenShift Container Platform 4.13
openshift4/ose-cluster-kube-controller-manager-operator:v4.13.0-202402011837.p0.gdac7113.assembly.stream	cpe:/a:redhat:openshift:4.13::el8	RHSA-2024:0741	2024-02-14T00:00:00Z

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2024-3260	A flaw was found in kube-controller-manager. This issue occurs when the initial application of a HPA config YAML lacking a .spec.behavior.scaleUp block causes a denial of service due to KCM pods going into restart churn.
Github GHSA	GHSA-h7wq-jj8r-qm7p	Kubernetes Nil pointer dereference in KCM after v1 HPA patch request

Fixes

Solution

No solution given by the vendor.

Workaround

Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

References

Link	Providers
https://access.redhat.com/errata/RHSA-2024:0741
https://access.redhat.com/errata/RHSA-2024:1267
https://access.redhat.com/security/cve/CVE-2024-0793
https://bugzilla.redhat.com/show_bug.cgi?id=2214402
https://github.com/openshift/kubernetes/pull/1876
https://nvd.nist.gov/vuln/detail/CVE-2024-0793
https://www.cve.org/CVERecord?id=CVE-2024-0793

History

Sun, 17 Nov 2024 17:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Sun, 17 Nov 2024 11:00:00 +0000

Type	Values Removed	Values Added
Title	kube-controller-manager: malformed HPA v1 manifest causes crash	Kube-controller-manager: malformed hpa v1 manifest causes crash
CPEs		cpe:/a:redhat:openshift:4 cpe:/a:redhat:openshift:4.12::el9 cpe:/a:redhat:openshift:4.13::el9
References		https://access.redhat.com/errata/RHSA-2024:0741 https://access.redhat.com/errata/RHSA-2024:1267 https://access.redhat.com/security/cve/CVE-2024-0793 https://bugzilla.redhat.com/show_bug.cgi?id=2214402

MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2024-11-17T10:45:50.457Z

Updated: 2024-11-17T16:16:49.847Z

Reserved: 2024-01-22T21:32:10.068Z

Link: CVE-2024-0793

Vulnrichment

Updated: 2024-11-17T16:16:46.979Z

NVD

Status : Awaiting Analysis

Published: 2024-11-17T11:15:06.340

Modified: 2024-11-18T17:11:17.393

Link: CVE-2024-0793

Redhat

Severity : Important

Publid Date: 2024-02-07T00:00:00Z

Links: CVE-2024-0793 - Bugzilla

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-0793", "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "state": "PUBLISHED", "assignerShortName": "redhat", "dateReserved": "2024-01-22T21:32:10.068Z", "datePublished": "2024-11-17T10:45:50.457Z", "dateUpdated": "2024-11-17T16:16:49.847Z"}, "containers": {"cna": {"title": "Kube-controller-manager: malformed hpa v1 manifest causes crash", "metrics": [{"other": {"content": {"value": "Important", "namespace": "https://access.redhat.com/security/updates/classification/"}, "type": "Red Hat severity rating"}}, {"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.7, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H", "version": "3.1"}, "format": "CVSS"}], "descriptions": [{"lang": "en", "value": "A flaw was found in kube-controller-manager. This issue occurs when the initial application of a HPA config YAML lacking a .spec.behavior.scaleUp block causes a denial of service due to KCM pods going into restart churn."}], "affected": [{"versions": [{"status": "affected", "version": "0", "lessThan": "1.27", "versionType": "semver"}], "packageName": "kube-controller-manager", "collectionURL": "https://github.com/kubernetes", "defaultStatus": "unaffected"}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "baremetal-machine-controller-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "cluster-etcd-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "cluster-monitoring-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "cluster-network-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "cluster-node-tuning-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "cluster-version-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "configmap-reload-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "coredns-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "csi-attacher-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "csi-driver-manila-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "csi-driver-manila-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "csi-driver-nfs-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "csi-livenessprobe-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "csi-node-driver-registrar-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "csi-provisioner-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "driver-toolkit-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ibm-vpc-node-label-updater-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ironic-rhcos-downloader-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "kube-proxy-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "kube-rbac-proxy-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "kube-state-metrics-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "marketplace-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "multus-cni-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "oauth-server-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "oc-mirror-plugin-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "openshift-enterprise-cli-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "openshift-enterprise-console-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "openshift-enterprise-console-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "openshift-enterprise-deployer-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "openshift-enterprise-haproxy-router-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "openshift-enterprise-hyperkube-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "openshift-enterprise-keepalived-ipfailover-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "openshift-enterprise-pod-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "openshift-enterprise-registry-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "openshift-enterprise-tests-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "openshift-state-metrics-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "operator-lifecycle-manager-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "operator-registry-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-agent-installer-api-server-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-agent-installer-csr-approver-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-agent-installer-node-agent-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-agent-installer-orchestrator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-alibaba-cloud-controller-manager-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-alibaba-cloud-csi-driver-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-alibaba-disk-csi-driver-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-alibaba-machine-controllers-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-apiserver-network-proxy-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-aws-cloud-controller-manager-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-aws-cluster-api-controllers-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-aws-ebs-csi-driver-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-aws-ebs-csi-driver-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-aws-pod-identity-webhook-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-azure-cloud-controller-manager-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-azure-cloud-node-manager-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-azure-cluster-api-controllers-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-azure-disk-csi-driver-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-azure-disk-csi-driver-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-azure-file-csi-driver-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-azure-file-csi-driver-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-baremetal-installer-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-baremetal-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-baremetal-runtimecfg-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-cli-artifacts-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-cloud-credential-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-cloud-network-config-controller-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-cluster-api-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-cluster-authentication-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-cluster-autoscaler-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-cluster-baremetal-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-cluster-bootstrap-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-cluster-capi-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-cluster-cloud-controller-manager-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-cluster-config-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-cluster-control-plane-machine-set-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-cluster-csi-snapshot-controller-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-cluster-dns-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-cluster-image-registry-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-cluster-ingress-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-cluster-kube-apiserver-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-cluster-kube-cluster-api-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-cluster-kube-controller-manager-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-cluster-kube-scheduler-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-cluster-kube-storage-version-migrator-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-cluster-machine-approver-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-cluster-openshift-apiserver-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-cluster-openshift-controller-manager-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-cluster-ovirt-csi-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-cluster-platform-operators-manager-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-cluster-policy-controller-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-cluster-storage-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-cluster-update-keys-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-containernetworking-plugins-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-csi-driver-shared-resource-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-csi-driver-shared-resource-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-csi-driver-shared-resource-webhook-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-csi-external-resizer-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-csi-external-snapshotter-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-csi-snapshot-controller-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-csi-snapshot-validation-webhook-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-egress-router-cni-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-etcd-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-gcp-cloud-controller-manager-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-gcp-cluster-api-controllers-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-gcp-pd-csi-driver-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-gcp-pd-csi-driver-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-hypershift-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-ibmcloud-cluster-api-controllers-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-ibm-cloud-controller-manager-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-ibmcloud-machine-controllers-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-ibm-vpc-block-csi-driver-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-ibm-vpc-block-csi-driver-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-image-customization-controller-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-insights-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-installer-artifacts-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-installer-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-kube-storage-version-migrator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-kubevirt-cloud-controller-manager-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-kubevirt-csi-driver-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-libvirt-machine-controllers-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-machine-api-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-machine-api-provider-aws-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-machine-api-provider-azure-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-machine-api-provider-gcp-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-machine-api-provider-openstack-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-machine-config-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-machine-os-images-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-multus-admission-controller-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-multus-networkpolicy-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-must-gather-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-network-interface-bond-cni-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-network-metrics-daemon-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-network-tools-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-node-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-nutanix-cloud-controller-manager-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-nutanix-machine-controllers-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-oauth-apiserver-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-olm-rukpak-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-openshift-apiserver-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-openshift-controller-manager-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-openstack-cinder-csi-driver-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-openstack-cinder-csi-driver-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-openstack-cloud-controller-manager-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-ovirt-csi-driver-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-ovirt-machine-controllers-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-ovn-kubernetes-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-powervs-block-csi-driver-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-powervs-block-csi-driver-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-powervs-cloud-controller-manager-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-powervs-machine-controllers-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-prometheus-adapter-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-route-controller-manager-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-service-ca-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-thanos-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-tools-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-vmware-vsphere-csi-driver-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-vmware-vsphere-csi-driver-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-vsphere-cloud-controller-manager-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-vsphere-cluster-api-controllers-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ose-vsphere-problem-detector-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "ovn-kubernetes-microshift-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "prometheus-config-reloader-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "prometheus-operator-admission-webhook-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "prometheus-operator-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "telemeter-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected", "packageName": "vmware-vsphere-syncer-container", "cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4.12", "collectionURL": "https://access.redhat.com/downloads/content/package-browser/", "packageName": "openshift", "defaultStatus": "affected", "versions": [{"version": "0:4.12.0-202403042037.p0.g9946c63.assembly.stream.el9", "lessThan": "*", "versionType": "rpm", "status": "unaffected"}], "cpes": ["cpe:/a:redhat:openshift:4.12::el8", "cpe:/a:redhat:openshift:4.12::el9"]}, {"vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "collectionURL": "https://access.redhat.com/downloads/content/package-browser/", "packageName": "microshift", "defaultStatus": "affected", "cpes": ["cpe:/a:redhat:openshift:4"]}], "references": [{"url": "https://access.redhat.com/errata/RHSA-2024:0741", "name": "RHSA-2024:0741", "tags": ["vendor-advisory", "x_refsource_REDHAT"]}, {"url": "https://access.redhat.com/errata/RHSA-2024:1267", "name": "RHSA-2024:1267", "tags": ["vendor-advisory", "x_refsource_REDHAT"]}, {"url": "https://access.redhat.com/security/cve/CVE-2024-0793", "tags": ["vdb-entry", "x_refsource_REDHAT"]}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2214402", "name": "RHBZ#2214402", "tags": ["issue-tracking", "x_refsource_REDHAT"]}, {"url": "https://github.com/openshift/kubernetes/pull/1876"}], "datePublic": "2024-02-07T00:00:00+00:00", "problemTypes": [{"descriptions": [{"cweId": "CWE-20", "description": "Improper Input Validation", "lang": "en", "type": "CWE"}]}], "x_redhatCweChain": "CWE-20: Improper Input Validation", "workarounds": [{"lang": "en", "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."}], "timeline": [{"lang": "en", "time": "2023-06-12T00:00:00+00:00", "value": "Reported to Red Hat."}, {"lang": "en", "time": "2024-02-07T00:00:00+00:00", "value": "Made public."}], "credits": [{"lang": "en", "value": "Red Hat would like to thank Mikel Duke (USAA) for reporting this issue."}], "providerMetadata": {"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat", "dateUpdated": "2024-11-17T10:45:50.457Z"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-11-17T16:16:32.204219Z", "id": "CVE-2024-0793", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-11-17T16:16:49.847Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-0793", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-11-17T16:16:32.204219Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-11-17T16:16:46.979Z"}}], "cna": {"title": "Kube-controller-manager: malformed hpa v1 manifest causes crash", "credits": [{"lang": "en", "value": "Red Hat would like to thank Mikel Duke (USAA) for reporting this issue."}], "metrics": [{"other": {"type": "Red Hat severity rating", "content": {"value": "Important", "namespace": "https://access.redhat.com/security/updates/classification/"}}}, {"format": "CVSS", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.7, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}}], "affected": [{"versions": [{"status": "affected", "version": "0", "lessThan": "1.27", "versionType": "semver"}], "packageName": "kube-controller-manager", "collectionURL": "https://github.com/kubernetes", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "baremetal-machine-controller-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "cluster-etcd-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "cluster-monitoring-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "cluster-network-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "cluster-node-tuning-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "cluster-version-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "configmap-reload-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "coredns-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "csi-attacher-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "csi-driver-manila-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "csi-driver-manila-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "csi-driver-nfs-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "csi-livenessprobe-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "csi-node-driver-registrar-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "csi-provisioner-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "driver-toolkit-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ibm-vpc-node-label-updater-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ironic-rhcos-downloader-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "kube-proxy-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "kube-rbac-proxy-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "kube-state-metrics-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "marketplace-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "multus-cni-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "oauth-server-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "oc-mirror-plugin-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "openshift-enterprise-cli-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "openshift-enterprise-console-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "openshift-enterprise-console-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "openshift-enterprise-deployer-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "openshift-enterprise-haproxy-router-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "openshift-enterprise-hyperkube-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "openshift-enterprise-keepalived-ipfailover-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "openshift-enterprise-pod-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "openshift-enterprise-registry-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "openshift-enterprise-tests-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "openshift-state-metrics-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "operator-lifecycle-manager-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "operator-registry-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-agent-installer-api-server-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-agent-installer-csr-approver-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-agent-installer-node-agent-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-agent-installer-orchestrator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-alibaba-cloud-controller-manager-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-alibaba-cloud-csi-driver-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-alibaba-disk-csi-driver-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-alibaba-machine-controllers-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-apiserver-network-proxy-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-aws-cloud-controller-manager-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-aws-cluster-api-controllers-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-aws-ebs-csi-driver-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-aws-ebs-csi-driver-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-aws-pod-identity-webhook-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-azure-cloud-controller-manager-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-azure-cloud-node-manager-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-azure-cluster-api-controllers-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-azure-disk-csi-driver-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-azure-disk-csi-driver-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-azure-file-csi-driver-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-azure-file-csi-driver-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-baremetal-installer-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-baremetal-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-baremetal-runtimecfg-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-cli-artifacts-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-cloud-credential-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-cloud-network-config-controller-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-cluster-api-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-cluster-authentication-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-cluster-autoscaler-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-cluster-baremetal-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-cluster-bootstrap-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-cluster-capi-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-cluster-cloud-controller-manager-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-cluster-config-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-cluster-control-plane-machine-set-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-cluster-csi-snapshot-controller-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-cluster-dns-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-cluster-image-registry-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-cluster-ingress-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-cluster-kube-apiserver-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-cluster-kube-cluster-api-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-cluster-kube-controller-manager-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-cluster-kube-scheduler-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-cluster-kube-storage-version-migrator-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-cluster-machine-approver-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-cluster-openshift-apiserver-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-cluster-openshift-controller-manager-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-cluster-ovirt-csi-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-cluster-platform-operators-manager-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-cluster-policy-controller-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-cluster-storage-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-cluster-update-keys-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-containernetworking-plugins-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-csi-driver-shared-resource-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-csi-driver-shared-resource-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-csi-driver-shared-resource-webhook-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-csi-external-resizer-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-csi-external-snapshotter-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-csi-snapshot-controller-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-csi-snapshot-validation-webhook-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-egress-router-cni-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-etcd-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-gcp-cloud-controller-manager-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-gcp-cluster-api-controllers-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-gcp-pd-csi-driver-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-gcp-pd-csi-driver-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-hypershift-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-ibmcloud-cluster-api-controllers-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-ibm-cloud-controller-manager-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-ibmcloud-machine-controllers-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-ibm-vpc-block-csi-driver-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-ibm-vpc-block-csi-driver-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-image-customization-controller-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-insights-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-installer-artifacts-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-installer-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-kube-storage-version-migrator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-kubevirt-cloud-controller-manager-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-kubevirt-csi-driver-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-libvirt-machine-controllers-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-machine-api-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-machine-api-provider-aws-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-machine-api-provider-azure-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-machine-api-provider-gcp-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-machine-api-provider-openstack-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-machine-config-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-machine-os-images-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-multus-admission-controller-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-multus-networkpolicy-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-must-gather-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-network-interface-bond-cni-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-network-metrics-daemon-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-network-tools-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-node-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-nutanix-cloud-controller-manager-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-nutanix-machine-controllers-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-oauth-apiserver-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-olm-rukpak-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-openshift-apiserver-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-openshift-controller-manager-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-openstack-cinder-csi-driver-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-openstack-cinder-csi-driver-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-openstack-cloud-controller-manager-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-ovirt-csi-driver-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-ovirt-machine-controllers-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-ovn-kubernetes-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-powervs-block-csi-driver-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-powervs-block-csi-driver-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-powervs-cloud-controller-manager-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-powervs-machine-controllers-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-prometheus-adapter-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-route-controller-manager-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-service-ca-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-thanos-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-tools-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-vmware-vsphere-csi-driver-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-vmware-vsphere-csi-driver-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-vsphere-cloud-controller-manager-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-vsphere-cluster-api-controllers-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ose-vsphere-problem-detector-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "ovn-kubernetes-microshift-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "prometheus-config-reloader-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "prometheus-operator-admission-webhook-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "prometheus-operator-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "telemeter-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.13::el9", "cpe:/a:redhat:openshift:4.13::el8"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "vmware-vsphere-syncer-container", "collectionURL": "https://catalog.redhat.com/software/containers/", "defaultStatus": "unaffected"}, {"cpes": ["cpe:/a:redhat:openshift:4.12::el8", "cpe:/a:redhat:openshift:4.12::el9"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4.12", "versions": [{"status": "unaffected", "version": "0:4.12.0-202403042037.p0.g9946c63.assembly.stream.el9", "lessThan": "*", "versionType": "rpm"}], "packageName": "openshift", "collectionURL": "https://access.redhat.com/downloads/content/package-browser/", "defaultStatus": "affected"}, {"cpes": ["cpe:/a:redhat:openshift:4"], "vendor": "Red Hat", "product": "Red Hat OpenShift Container Platform 4", "packageName": "microshift", "collectionURL": "https://access.redhat.com/downloads/content/package-browser/", "defaultStatus": "affected"}], "timeline": [{"lang": "en", "time": "2023-06-12T00:00:00+00:00", "value": "Reported to Red Hat."}, {"lang": "en", "time": "2024-02-07T00:00:00+00:00", "value": "Made public."}], "datePublic": "2024-02-07T00:00:00+00:00", "references": [{"url": "https://access.redhat.com/errata/RHSA-2024:0741", "name": "RHSA-2024:0741", "tags": ["vendor-advisory", "x_refsource_REDHAT"]}, {"url": "https://access.redhat.com/errata/RHSA-2024:1267", "name": "RHSA-2024:1267", "tags": ["vendor-advisory", "x_refsource_REDHAT"]}, {"url": "https://access.redhat.com/security/cve/CVE-2024-0793", "tags": ["vdb-entry", "x_refsource_REDHAT"]}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2214402", "name": "RHBZ#2214402", "tags": ["issue-tracking", "x_refsource_REDHAT"]}, {"url": "https://github.com/openshift/kubernetes/pull/1876"}], "workarounds": [{"lang": "en", "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."}], "descriptions": [{"lang": "en", "value": "A flaw was found in kube-controller-manager. This issue occurs when the initial application of a HPA config YAML lacking a .spec.behavior.scaleUp block causes a denial of service due to KCM pods going into restart churn."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-20", "description": "Improper Input Validation"}]}], "providerMetadata": {"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat", "dateUpdated": "2024-11-17T10:45:50.457Z"}, "x_redhatCweChain": "CWE-20: Improper Input Validation"}}, "cveMetadata": {"cveId": "CVE-2024-0793", "state": "PUBLISHED", "dateUpdated": "2024-11-17T16:16:49.847Z", "dateReserved": "2024-01-22T21:32:10.068Z", "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "datePublished": "2024-11-17T10:45:50.457Z", "assignerShortName": "redhat"}, "dataVersion": "5.1"}

{"acknowledgement": "Red Hat would like to thank Mikel Duke (USAA) for reporting this issue.", "affected_release": [{"advisory": "RHSA-2024:1267", "cpe": "cpe:/a:redhat:openshift:4.12::el8", "package": "openshift-0:4.12.0-202403042037.p0.g9946c63.assembly.stream.el9", "product_name": "Red Hat OpenShift Container Platform 4.12", "release_date": "2024-03-20T00:00:00Z"}, {"advisory": "RHSA-2024:0741", "cpe": "cpe:/a:redhat:openshift:4.13::el8", "package": "openshift4/ose-cluster-kube-controller-manager-operator:v4.13.0-202402011837.p0.gdac7113.assembly.stream", "product_name": "Red Hat OpenShift Container Platform 4.13", "release_date": "2024-02-14T00:00:00Z"}], "bugzilla": {"description": "kube-controller-manager: malformed HPA v1 manifest causes crash", "id": "2214402", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2214402"}, "csaw": false, "cvss3": {"cvss3_base_score": "7.7", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H", "status": "verified"}, "cwe": "CWE-20", "details": ["A flaw was found in kube-controller-manager. This issue occurs when the initial application of a HPA config YAML lacking a .spec.behavior.scaleUp block causes a denial of service due to KCM pods going into restart churn.", "A flaw was found in kube-controller-manager. This issue occurs when the initial application of a HPA config YAML lacking a .spec.behavior.scaleUp block causes a denial of service due to KCM pods going into restart churn."], "mitigation": {"lang": "en:us", "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."}, "name": "CVE-2024-0793", "package_state": [{"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Will not fix", "package_name": "microshift", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift_gitops:1", "fix_state": "Not affected", "package_name": "openshift-gitops-1/argo-rollouts-rhel8", "product_name": "Red Hat OpenShift GitOps"}], "public_date": "2024-02-07T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2024-0793\nhttps://nvd.nist.gov/vuln/detail/CVE-2024-0793\nhttps://github.com/openshift/kubernetes/pull/1876"], "threat_severity": "Important"}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Changed

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object

JSON object