Metrics
Affected Vendors & Products
Solution
No solution given by the vendor.
Workaround
Red Hat Product Security does not have any mitigation recommendations at this time. Please update as soon as possible.
Mon, 14 Jul 2025 13:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
epss
|
epss
|
Tue, 25 Feb 2025 08:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:/a:redhat:openshift:4.18::el9 |
Tue, 25 Feb 2025 08:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
|
Wed, 18 Dec 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Wed, 18 Dec 2024 05:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Title | ose-olm-catalogd-container: incomplete fix for rapid reset (CVE-2023-39325/CVE-2023-44487) | Ose-olm-catalogd-container: incomplete fix for rapid reset (cve-2023-39325/cve-2023-44487) |
First Time appeared |
Redhat
Redhat openshift |
|
CPEs | cpe:/a:redhat:openshift:4 | |
Vendors & Products |
Redhat
Redhat openshift |
|
References |
|
Tue, 17 Dec 2024 14:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | An incomplete fix for ose-olm-catalogd-container was issued for the Rapid Reset Vulnerability (CVE-2023-39325/CVE-2023-44487) where only unauthenticated streams were protected, not streams created by authenticated sources. | |
Title | ose-olm-catalogd-container: incomplete fix for rapid reset (CVE-2023-39325/CVE-2023-44487) | |
Weaknesses | CWE-400 | |
References |
| |
Metrics |
threat_severity
|
cvssV3_1
|

Status: PUBLISHED
Assigner: redhat
Published:
Updated: 2025-08-30T09:21:59.474Z
Reserved: 2024-12-16T22:31:49.130Z
Link: CVE-2024-12698

Updated: 2024-12-18T15:11:22.377Z

Status : Awaiting Analysis
Published: 2024-12-18T05:15:07.840
Modified: 2025-02-25T08:15:28.120
Link: CVE-2024-12698


No data.