CVE-2024-45813 - Vulnerability Details

find-my-way is a fast, open source HTTP router, internally using a Radix Tree (aka compact Prefix Tree), supports route params, wildcards, and it's framework independent. A bad regular expression is generated any time one has two parameters within a single segment, when adding a `-` at the end, like `/:a-:b-`. This may cause a denial of service in some instances. Users are advised to update to find-my-way v8.2.2 or v9.0.1. or subsequent versions. There are no known workarounds for this issue.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact Low

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact partial

Vendors	Products
Redhat	Acm Multicluster Engine Openshift Devspaces

No data.

Package	CPE	Advisory	Released Date
multicluster engine for Kubernetes 2.6 for RHEL 8
multicluster-engine/assisted-image-service-rhel8:v2.6.4-4	cpe:/a:redhat:multicluster_engine:2.6::el8	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/assisted-installer-agent-rhel8:v2.6.4-7	cpe:/a:redhat:multicluster_engine:2.6::el8	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/assisted-installer-controller-rhel8:v2.6.4-6	cpe:/a:redhat:multicluster_engine:2.6::el8	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/assisted-installer-rhel8:v2.6.4-7	cpe:/a:redhat:multicluster_engine:2.6::el8	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/assisted-service-8-rhel8:v2.6.4-11	cpe:/a:redhat:multicluster_engine:2.6::el8	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster engine for Kubernetes 2.6 for RHEL 9
multicluster-engine/addon-manager-rhel9:v2.6.4-14	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/assisted-service-9-rhel9:v2.6.4-11	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/backplane-rhel9-operator:v2.6.4-21	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/cluster-api-provider-agent-rhel9:v2.6.4-6	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/cluster-api-provider-kubevirt-rhel9:v2.6.4-4	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/cluster-api-rhel9:v2.6.4-4	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/clusterclaims-controller-rhel9:v2.6.4-6	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/cluster-curator-controller-rhel9:v2.6.4-6	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/cluster-image-set-controller-rhel9:v2.6.4-6	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/clusterlifecycle-state-metrics-rhel9:v2.6.4-7	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/cluster-proxy-addon-rhel9:v2.6.4-6	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/cluster-proxy-rhel9:v2.6.4-5	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/console-mce-rhel9:v2.6.4-19	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/discovery-rhel9:v2.6.4-14	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/hive-rhel9:v2.6.4-6	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/hypershift-addon-rhel9-operator:v2.6.4-6	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/hypershift-cli-rhel9:v2.6.4-24	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/hypershift-rhel9-operator:v2.6.4-23	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/image-based-install-rhel9:v2.6.4-65	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/kube-rbac-proxy-mce-rhel9:v2.6.4-3	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/managedcluster-import-controller-rhel9:v2.6.4-8	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/managed-serviceaccount-rhel9:v2.6.4-14	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/mce-operator-bundle:v2.6.4-47	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/multicloud-manager-rhel9:v2.6.4-6	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/must-gather-rhel9:v2.6.4-18	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/placement-rhel9:v2.6.4-14	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/provider-credential-controller-rhel9:v2.6.4-6	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/registration-operator-rhel9:v2.6.4-14	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/registration-rhel9:v2.6.4-14	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster-engine/work-rhel9:v2.6.4-14	cpe:/a:redhat:multicluster_engine:2.6::el9	RHSA-2024:11293	2024-12-17T00:00:00Z
multicluster engine for Kubernetes 2.7 for RHEL 8
multicluster-engine/assisted-service-8-rhel8:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el8	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster engine for Kubernetes 2.7 for RHEL 9
multicluster-engine/addon-manager-rhel9:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/assisted-image-service-rhel9:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/assisted-installer-agent-rhel9:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/assisted-installer-controller-rhel9:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/assisted-installer-rhel9:v2.7.2-2	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/assisted-service-9-rhel9:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/backplane-rhel9-operator:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/cluster-api-provider-agent-rhel9:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/cluster-api-provider-kubevirt-rhel9:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/cluster-api-rhel9:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/clusterclaims-controller-rhel9:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/cluster-curator-controller-rhel9:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/cluster-image-set-controller-rhel9:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/clusterlifecycle-state-metrics-rhel9:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/cluster-proxy-addon-rhel9:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/cluster-proxy-rhel9:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/console-mce-rhel9:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/discovery-rhel9:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/hive-rhel9:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/hypershift-addon-rhel9-operator:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/hypershift-cli-rhel9:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/hypershift-rhel9-operator:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/image-based-install-rhel9:v2.7.2-3	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/kube-rbac-proxy-mce-rhel9:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/managedcluster-import-controller-rhel9:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/managed-serviceaccount-rhel9:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/mce-operator-bundle:v2.7.2-3	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/multicloud-manager-rhel9:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/must-gather-rhel9:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/placement-rhel9:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/provider-credential-controller-rhel9:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/registration-operator-rhel9:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/registration-rhel9:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
multicluster-engine/work-rhel9:v2.7.2-1	cpe:/a:redhat:multicluster_engine:2.7::el9	RHSA-2024:10857	2024-12-05T00:00:00Z
Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9
rhacm2/acm-cluster-permission-rhel9:v2.11.4-4	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/acm-governance-policy-addon-controller-rhel9:v2.11.4-12	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/acm-governance-policy-framework-addon-rhel9:v2.11.4-13	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/acm-grafana-rhel9:v2.11.4-4	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/acm-must-gather-rhel9:v2.11.4-12	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/acm-operator-bundle:v2.11.4-47	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/acm-prometheus-config-reloader-rhel9:v2.11.4-3	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/acm-prometheus-rhel9:v2.11.4-3	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/acm-search-indexer-rhel9:v2.11.4-10	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/acm-search-v2-api-rhel9:v2.11.4-12	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/acm-search-v2-rhel9:v2.11.4-11	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/acm-volsync-addon-controller-rhel9:v2.11.4-22	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/cert-policy-controller-rhel9:v2.11.4-12	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/cluster-backup-rhel9-operator:v2.11.4-25	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/config-policy-controller-rhel9:v2.11.4-15	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/console-rhel9:v2.11.4-17	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/endpoint-monitoring-rhel9-operator:v2.11.4-6	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/governance-policy-propagator-rhel9:v2.11.4-13	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/grafana-dashboard-loader-rhel9:v2.11.4-6	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/insights-client-rhel9:v2.11.4-10	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/insights-metrics-rhel9:v2.11.4-11	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/klusterlet-addon-controller-rhel9:v2.11.4-6	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/kube-rbac-proxy-rhel9:v2.11.4-3	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/kube-state-metrics-rhel9:v2.11.4-3	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/memcached-exporter-rhel9:v2.11.4-3	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/memcached-rhel9:v2.11.4-3	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/metrics-collector-rhel9:v2.11.4-6	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/multicloud-integrations-rhel9:v2.11.4-3	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/multiclusterhub-rhel9:v2.11.4-16	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/multicluster-observability-rhel9-operator:v2.11.4-6	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/multicluster-operators-application-rhel9:v2.11.4-3	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/multicluster-operators-channel-rhel9:v2.11.4-3	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/multicluster-operators-subscription-rhel9:v2.11.4-5	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/node-exporter-rhel9:v2.11.4-4	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/observatorium-rhel9:v2.11.4-5	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/observatorium-rhel9-operator:v2.11.4-6	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/prometheus-alertmanager-rhel9:v2.11.4-3	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/prometheus-rhel9:v2.11.4-3	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/rbac-query-proxy-rhel9:v2.11.4-6	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/search-collector-rhel9:v2.11.4-10	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/submariner-addon-rhel9:v2.11.4-17	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/thanos-receive-controller-rhel9:v2.11.4-3	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
rhacm2/thanos-rhel9:v2.11.4-5	cpe:/a:redhat:acm:2.11::el9	RHSA-2024:11381	2024-12-18T00:00:00Z
Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9
rhacm2/acm-cli-rhel9:v2.12.1-4	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/acm-cluster-permission-rhel9:v2.12.1-2	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/acm-governance-policy-addon-controller-rhel9:v2.12.1-4	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/acm-governance-policy-framework-addon-rhel9:v2.12.1-4	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/acm-grafana-rhel9:v2.12.1-2	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/acm-multicluster-observability-addon-rhel9:v2.12.1-2	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/acm-must-gather-rhel9:v2.12.1-5	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/acm-operator-bundle:v2.12.1-10	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/acm-prometheus-config-reloader-rhel9:v2.12.1-2	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/acm-prometheus-rhel9:v2.12.1-2	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/acm-search-indexer-rhel9:v2.12.1-4	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/acm-search-v2-api-rhel9:v2.12.1-4	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/acm-search-v2-rhel9:v2.12.1-4	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/acm-siteconfig-rhel9:v2.12.1-2	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/acm-volsync-addon-controller-rhel9:v2.12.1-4	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/cert-policy-controller-rhel9:v2.12.1-4	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/cluster-backup-rhel9-operator:v2.12.1-4	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/config-policy-controller-rhel9:v2.12.1-4	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/console-rhel9:v2.12.1-8	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/endpoint-monitoring-rhel9-operator:v2.12.1-3	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/governance-policy-propagator-rhel9:v2.12.1-4	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/grafana-dashboard-loader-rhel9:v2.12.1-3	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/insights-client-rhel9:v2.12.1-2	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/insights-metrics-rhel9:v2.12.1-2	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/klusterlet-addon-controller-rhel9:v2.12.1-2	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/kube-rbac-proxy-rhel9:v2.12.1-2	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/kube-state-metrics-rhel9:v2.12.1-2	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/memcached-exporter-rhel9:v2.12.1-2	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/memcached-rhel9:v2.12.1-2	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/metrics-collector-rhel9:v2.12.1-3	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/multicloud-integrations-rhel9:v2.12.1-2	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/multiclusterhub-rhel9:v2.12.1-4	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/multicluster-observability-rhel9-operator:v2.12.1-3	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/multicluster-operators-application-rhel9:v2.12.1-2	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/multicluster-operators-channel-rhel9:v2.12.1-2	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/multicluster-operators-subscription-rhel9:v2.12.1-2	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/node-exporter-rhel9:v2.12.1-3	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/observatorium-rhel9:v2.12.1-2	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/observatorium-rhel9-operator:v2.12.1-2	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/prometheus-alertmanager-rhel9:v2.12.1-2	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/prometheus-rhel9:v2.12.1-2	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/rbac-query-proxy-rhel9:v2.12.1-3	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/search-collector-rhel9:v2.12.1-3	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/submariner-addon-rhel9:v2.12.1-5	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/thanos-receive-controller-rhel9:v2.12.1-2	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
rhacm2/thanos-rhel9:v2.12.1-2	cpe:/a:redhat:acm:2.12::el9	RHSA-2024:10865	2024-12-05T00:00:00Z
Red Hat OpenShift Dev Spaces 3 Containers
devspaces/dashboard-rhel8:3.17-25	cpe:/a:redhat:openshift_devspaces:3::el8	RHSA-2024:10236	2024-11-25T00:00:00Z

References

Link	Providers
https://blakeembrey.com/posts/2024-09-web-redos
https://github.com/delvedor/find-my-way/commit/5e9e0eb5d8d438e06a185d5e536a896572dd0440
https://github.com/delvedor/find-my-way/security/advisories/GHSA-rrr8-f88r-h8q6
https://nvd.nist.gov/vuln/detail/CVE-2024-45813
https://www.cve.org/CVERecord?id=CVE-2024-45813

History

Thu, 13 Feb 2025 00:45:00 +0000

Type	Values Removed	Values Added
CPEs		cpe:/a:redhat:acm:2.11::el9

Wed, 18 Dec 2024 02:15:00 +0000

Type	Values Removed	Values Added
CPEs	~~cpe:/a:redhat:acm:2.11::el9~~

Thu, 19 Dec 2024 02:15:00 +0000

Type	Values Removed	Values Added
CPEs		cpe:/a:redhat:acm:2.11::el9 cpe:/a:redhat:multicluster_engine:2.6::el8 cpe:/a:redhat:multicluster_engine:2.6::el9

Sat, 07 Dec 2024 02:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Redhat acm Redhat multicluster Engine
CPEs		cpe:/a:redhat:acm:2.12::el9 cpe:/a:redhat:multicluster_engine:2.7::el8 cpe:/a:redhat:multicluster_engine:2.7::el9
Vendors & Products		Redhat acm Redhat multicluster Engine

Wed, 27 Nov 2024 02:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Redhat Redhat openshift Devspaces
CPEs		cpe:/a:redhat:openshift_devspaces:3::el8
Vendors & Products		Redhat Redhat openshift Devspaces

Wed, 18 Sep 2024 21:30:00 +0000

Type	Values Removed	Values Added
References		https://nvd.nist.gov/vuln/detail/CVE-2024-45813 https://www.cve.org/CVERecord?id=CVE-2024-45813
Metrics	threat_severity `None`	threat_severity `Moderate`

Wed, 18 Sep 2024 18:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Wed, 18 Sep 2024 17:00:00 +0000

Type	Values Removed	Values Added
Description		find-my-way is a fast, open source HTTP router, internally using a Radix Tree (aka compact Prefix Tree), supports route params, wildcards, and it's framework independent. A bad regular expression is generated any time one has two parameters within a single segment, when adding a `-` at the end, like `/:a-:b-`. This may cause a denial of service in some instances. Users are advised to update to find-my-way v8.2.2 or v9.0.1. or subsequent versions. There are no known workarounds for this issue.
Title		ReDoS vulnerability in multiparametric routes in find-my-way
Weaknesses		CWE-1333
References		https://blakeembrey.com/posts/2024-09-web-redos https://github.com/delvedor/find-my-way/commit/5e9e0eb5d8d438e06a185d5e536a896572dd0440 https://github.com/delvedor/find-my-way/security/advisories/GHSA-rrr8-f88r-h8q6
Metrics		cvssV3_1 `{'score': 5.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L'}`

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2024-09-18T16:47:57.138Z

Updated: 2024-09-18T18:07:10.935Z

Reserved: 2024-09-09T14:23:07.505Z

Link: CVE-2024-45813

Vulnrichment

Updated: 2024-09-18T18:07:07.246Z

NVD

Status : Awaiting Analysis

Published: 2024-09-18T17:15:19.163

Modified: 2024-09-20T12:30:17.483

Link: CVE-2024-45813

Redhat

Severity : Moderate

Publid Date: 2024-09-18T17:15:19Z

Links: CVE-2024-45813 - Bugzilla

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-45813", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2024-09-09T14:23:07.505Z", "datePublished": "2024-09-18T16:47:57.138Z", "dateUpdated": "2024-09-18T18:07:10.935Z"}, "containers": {"cna": {"title": "ReDoS vulnerability in multiparametric routes in find-my-way", "problemTypes": [{"descriptions": [{"cweId": "CWE-1333", "lang": "en", "description": "CWE-1333: Inefficient Regular Expression Complexity", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.1"}}], "references": [{"name": "https://github.com/delvedor/find-my-way/security/advisories/GHSA-rrr8-f88r-h8q6", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/delvedor/find-my-way/security/advisories/GHSA-rrr8-f88r-h8q6"}, {"name": "https://github.com/delvedor/find-my-way/commit/5e9e0eb5d8d438e06a185d5e536a896572dd0440", "tags": ["x_refsource_MISC"], "url": "https://github.com/delvedor/find-my-way/commit/5e9e0eb5d8d438e06a185d5e536a896572dd0440"}, {"name": "https://blakeembrey.com/posts/2024-09-web-redos", "tags": ["x_refsource_MISC"], "url": "https://blakeembrey.com/posts/2024-09-web-redos"}], "affected": [{"vendor": "delvedor", "product": "find-my-way", "versions": [{"version": "< 8.2.2", "status": "affected"}, {"version": "= 9.0.0", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-09-18T16:47:57.138Z"}, "descriptions": [{"lang": "en", "value": "find-my-way is a fast, open source HTTP router, internally using a Radix Tree (aka compact Prefix Tree), supports route params, wildcards, and it's framework independent. A bad regular expression is generated any time one has two parameters within a single segment, when adding a `-` at the end, like `/:a-:b-`. This may cause a denial of service in some instances. Users are advised to update to find-my-way v8.2.2 or v9.0.1. or subsequent versions. There are no known workarounds for this issue."}], "source": {"advisory": "GHSA-rrr8-f88r-h8q6", "discovery": "UNKNOWN"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-09-18T18:07:01.965848Z", "id": "CVE-2024-45813", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-18T18:07:10.935Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-45813", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-09-18T18:07:01.965848Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-18T18:07:07.246Z"}}], "cna": {"title": "ReDoS vulnerability in multiparametric routes in find-my-way", "source": {"advisory": "GHSA-rrr8-f88r-h8q6", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}}], "affected": [{"vendor": "delvedor", "product": "find-my-way", "versions": [{"status": "affected", "version": "< 8.2.2"}, {"status": "affected", "version": "= 9.0.0"}]}], "references": [{"url": "https://github.com/delvedor/find-my-way/security/advisories/GHSA-rrr8-f88r-h8q6", "name": "https://github.com/delvedor/find-my-way/security/advisories/GHSA-rrr8-f88r-h8q6", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://github.com/delvedor/find-my-way/commit/5e9e0eb5d8d438e06a185d5e536a896572dd0440", "name": "https://github.com/delvedor/find-my-way/commit/5e9e0eb5d8d438e06a185d5e536a896572dd0440", "tags": ["x_refsource_MISC"]}, {"url": "https://blakeembrey.com/posts/2024-09-web-redos", "name": "https://blakeembrey.com/posts/2024-09-web-redos", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "find-my-way is a fast, open source HTTP router, internally using a Radix Tree (aka compact Prefix Tree), supports route params, wildcards, and it's framework independent. A bad regular expression is generated any time one has two parameters within a single segment, when adding a `-` at the end, like `/:a-:b-`. This may cause a denial of service in some instances. Users are advised to update to find-my-way v8.2.2 or v9.0.1. or subsequent versions. There are no known workarounds for this issue."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-1333", "description": "CWE-1333: Inefficient Regular Expression Complexity"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-09-18T16:47:57.138Z"}}}, "cveMetadata": {"cveId": "CVE-2024-45813", "state": "PUBLISHED", "dateUpdated": "2024-09-18T18:07:10.935Z", "dateReserved": "2024-09-09T14:23:07.505Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2024-09-18T16:47:57.138Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.1"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "find-my-way is a fast, open source HTTP router, internally using a Radix Tree (aka compact Prefix Tree), supports route params, wildcards, and it's framework independent. A bad regular expression is generated any time one has two parameters within a single segment, when adding a `-` at the end, like `/:a-:b-`. This may cause a denial of service in some instances. Users are advised to update to find-my-way v8.2.2 or v9.0.1. or subsequent versions. There are no known workarounds for this issue."}, {"lang": "es", "value": "find-my-way es un enrutador HTTP r\u00e1pido y de c\u00f3digo abierto que utiliza internamente un \u00e1rbol de base (tambi\u00e9n conocido como \u00e1rbol de prefijos compacto), admite par\u00e1metros de ruta, comodines y es independiente del framework de trabajo. Se genera una expresi\u00f3n regular incorrecta cada vez que se tienen dos par\u00e1metros dentro de un solo segmento, al agregar un `-` al final, como `/:a-:b-`. Esto puede causar una denegaci\u00f3n de servicio en algunos casos. Se recomienda a los usuarios que actualicen find-my-way a v8.2.2 o v9.0.1 o versiones posteriores. No se conocen workarounds para este problema."}], "id": "CVE-2024-45813", "lastModified": "2024-09-20T12:30:17.483", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2024-09-18T17:15:19.163", "references": [{"source": "security-advisories@github.com", "url": "https://blakeembrey.com/posts/2024-09-web-redos"}, {"source": "security-advisories@github.com", "url": "https://github.com/delvedor/find-my-way/commit/5e9e0eb5d8d438e06a185d5e536a896572dd0440"}, {"source": "security-advisories@github.com", "url": "https://github.com/delvedor/find-my-way/security/advisories/GHSA-rrr8-f88r-h8q6"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-1333"}], "source": "security-advisories@github.com", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el8", "package": "multicluster-engine/assisted-image-service-rhel8:v2.6.4-4", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 8", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el8", "package": "multicluster-engine/assisted-installer-agent-rhel8:v2.6.4-7", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 8", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el8", "package": "multicluster-engine/assisted-installer-controller-rhel8:v2.6.4-6", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 8", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el8", "package": "multicluster-engine/assisted-installer-rhel8:v2.6.4-7", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 8", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el8", "package": "multicluster-engine/assisted-service-8-rhel8:v2.6.4-11", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 8", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/addon-manager-rhel9:v2.6.4-14", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/assisted-service-9-rhel9:v2.6.4-11", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/backplane-rhel9-operator:v2.6.4-21", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/cluster-api-provider-agent-rhel9:v2.6.4-6", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/cluster-api-provider-kubevirt-rhel9:v2.6.4-4", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/cluster-api-rhel9:v2.6.4-4", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/clusterclaims-controller-rhel9:v2.6.4-6", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/cluster-curator-controller-rhel9:v2.6.4-6", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/cluster-image-set-controller-rhel9:v2.6.4-6", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/clusterlifecycle-state-metrics-rhel9:v2.6.4-7", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/cluster-proxy-addon-rhel9:v2.6.4-6", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/cluster-proxy-rhel9:v2.6.4-5", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/console-mce-rhel9:v2.6.4-19", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/discovery-rhel9:v2.6.4-14", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/hive-rhel9:v2.6.4-6", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/hypershift-addon-rhel9-operator:v2.6.4-6", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/hypershift-cli-rhel9:v2.6.4-24", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/hypershift-rhel9-operator:v2.6.4-23", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/image-based-install-rhel9:v2.6.4-65", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/kube-rbac-proxy-mce-rhel9:v2.6.4-3", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/managedcluster-import-controller-rhel9:v2.6.4-8", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/managed-serviceaccount-rhel9:v2.6.4-14", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/mce-operator-bundle:v2.6.4-47", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/multicloud-manager-rhel9:v2.6.4-6", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/must-gather-rhel9:v2.6.4-18", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/placement-rhel9:v2.6.4-14", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/provider-credential-controller-rhel9:v2.6.4-6", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/registration-operator-rhel9:v2.6.4-14", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/registration-rhel9:v2.6.4-14", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/work-rhel9:v2.6.4-14", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el8", "package": "multicluster-engine/assisted-service-8-rhel8:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 8", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/addon-manager-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/assisted-image-service-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/assisted-installer-agent-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/assisted-installer-controller-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/assisted-installer-rhel9:v2.7.2-2", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/assisted-service-9-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/backplane-rhel9-operator:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/cluster-api-provider-agent-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/cluster-api-provider-kubevirt-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/cluster-api-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/clusterclaims-controller-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/cluster-curator-controller-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/cluster-image-set-controller-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/clusterlifecycle-state-metrics-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/cluster-proxy-addon-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/cluster-proxy-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/console-mce-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/discovery-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/hive-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/hypershift-addon-rhel9-operator:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/hypershift-cli-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/hypershift-rhel9-operator:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/image-based-install-rhel9:v2.7.2-3", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/kube-rbac-proxy-mce-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/managedcluster-import-controller-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/managed-serviceaccount-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/mce-operator-bundle:v2.7.2-3", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/multicloud-manager-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/must-gather-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/placement-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/provider-credential-controller-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/registration-operator-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/registration-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/work-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/acm-cluster-permission-rhel9:v2.11.4-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/acm-governance-policy-addon-controller-rhel9:v2.11.4-12", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/acm-governance-policy-framework-addon-rhel9:v2.11.4-13", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/acm-grafana-rhel9:v2.11.4-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/acm-must-gather-rhel9:v2.11.4-12", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/acm-operator-bundle:v2.11.4-47", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/acm-prometheus-config-reloader-rhel9:v2.11.4-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/acm-prometheus-rhel9:v2.11.4-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/acm-search-indexer-rhel9:v2.11.4-10", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/acm-search-v2-api-rhel9:v2.11.4-12", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/acm-search-v2-rhel9:v2.11.4-11", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/acm-volsync-addon-controller-rhel9:v2.11.4-22", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/cert-policy-controller-rhel9:v2.11.4-12", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/cluster-backup-rhel9-operator:v2.11.4-25", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/config-policy-controller-rhel9:v2.11.4-15", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/console-rhel9:v2.11.4-17", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/endpoint-monitoring-rhel9-operator:v2.11.4-6", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/governance-policy-propagator-rhel9:v2.11.4-13", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/grafana-dashboard-loader-rhel9:v2.11.4-6", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/insights-client-rhel9:v2.11.4-10", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/insights-metrics-rhel9:v2.11.4-11", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/klusterlet-addon-controller-rhel9:v2.11.4-6", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/kube-rbac-proxy-rhel9:v2.11.4-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/kube-state-metrics-rhel9:v2.11.4-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/memcached-exporter-rhel9:v2.11.4-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/memcached-rhel9:v2.11.4-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/metrics-collector-rhel9:v2.11.4-6", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/multicloud-integrations-rhel9:v2.11.4-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/multiclusterhub-rhel9:v2.11.4-16", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/multicluster-observability-rhel9-operator:v2.11.4-6", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/multicluster-operators-application-rhel9:v2.11.4-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/multicluster-operators-channel-rhel9:v2.11.4-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/multicluster-operators-subscription-rhel9:v2.11.4-5", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/node-exporter-rhel9:v2.11.4-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/observatorium-rhel9:v2.11.4-5", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/observatorium-rhel9-operator:v2.11.4-6", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/prometheus-alertmanager-rhel9:v2.11.4-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/prometheus-rhel9:v2.11.4-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/rbac-query-proxy-rhel9:v2.11.4-6", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/search-collector-rhel9:v2.11.4-10", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/submariner-addon-rhel9:v2.11.4-17", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/thanos-receive-controller-rhel9:v2.11.4-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/thanos-rhel9:v2.11.4-5", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-cli-rhel9:v2.12.1-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-cluster-permission-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-governance-policy-addon-controller-rhel9:v2.12.1-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-governance-policy-framework-addon-rhel9:v2.12.1-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-grafana-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-multicluster-observability-addon-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-must-gather-rhel9:v2.12.1-5", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-operator-bundle:v2.12.1-10", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-prometheus-config-reloader-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-prometheus-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-search-indexer-rhel9:v2.12.1-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-search-v2-api-rhel9:v2.12.1-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-search-v2-rhel9:v2.12.1-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-siteconfig-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-volsync-addon-controller-rhel9:v2.12.1-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/cert-policy-controller-rhel9:v2.12.1-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/cluster-backup-rhel9-operator:v2.12.1-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/config-policy-controller-rhel9:v2.12.1-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/console-rhel9:v2.12.1-8", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/endpoint-monitoring-rhel9-operator:v2.12.1-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/governance-policy-propagator-rhel9:v2.12.1-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/grafana-dashboard-loader-rhel9:v2.12.1-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/insights-client-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/insights-metrics-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/klusterlet-addon-controller-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/kube-rbac-proxy-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/kube-state-metrics-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/memcached-exporter-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/memcached-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/metrics-collector-rhel9:v2.12.1-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/multicloud-integrations-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/multiclusterhub-rhel9:v2.12.1-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/multicluster-observability-rhel9-operator:v2.12.1-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/multicluster-operators-application-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/multicluster-operators-channel-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/multicluster-operators-subscription-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/node-exporter-rhel9:v2.12.1-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/observatorium-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/observatorium-rhel9-operator:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/prometheus-alertmanager-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/prometheus-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/rbac-query-proxy-rhel9:v2.12.1-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/search-collector-rhel9:v2.12.1-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/submariner-addon-rhel9:v2.12.1-5", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/thanos-receive-controller-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/thanos-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10236", "cpe": "cpe:/a:redhat:openshift_devspaces:3::el8", "package": "devspaces/dashboard-rhel8:3.17-25", "product_name": "Red Hat OpenShift Dev Spaces 3 Containers", "release_date": "2024-11-25T00:00:00Z"}], "bugzilla": {"description": "find-my-way: ReDoS vulnerability in multiparametric routes", "id": "2313383", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313383"}, "csaw": false, "cvss3": {"cvss3_base_score": "7.5", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "status": "verified"}, "cwe": "CWE-1333", "details": ["find-my-way is a fast, open source HTTP router, internally using a Radix Tree (aka compact Prefix Tree), supports route params, wildcards, and it's framework independent. A bad regular expression is generated any time one has two parameters within a single segment, when adding a `-` at the end, like `/:a-:b-`. This may cause a denial of service in some instances. Users are advised to update to find-my-way v8.2.2 or v9.0.1. or subsequent versions. There are no known workarounds for this issue.", "A regular expression denial of service (ReDoS) flaw was found in find-my-way. A bad regular expression is generated any time one has two parameters within a single segment, when adding a `-` at the end, such as `/:a-:b-`. This issue may cause a denial of service in some instances."], "mitigation": {"lang": "en:us", "value": "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."}, "name": "CVE-2024-45813", "package_state": [{"cpe": "cpe:/a:redhat:openshift_ai", "fix_state": "Not affected", "package_name": "odh-dashboard-container", "product_name": "Red Hat OpenShift AI (RHOAI)"}, {"cpe": "cpe:/a:redhat:openshift_ai", "fix_state": "Not affected", "package_name": "odh-operator-container", "product_name": "Red Hat OpenShift AI (RHOAI)"}, {"cpe": "cpe:/a:redhat:openshift_data_science", "fix_state": "Affected", "package_name": "rhods/odh-dashboard-rhel8", "product_name": "Red Hat OpenShift Data Science (RHODS)"}, {"cpe": "cpe:/a:redhat:openshift_data_science", "fix_state": "Not affected", "package_name": "rhods/odh-operator-rhel8", "product_name": "Red Hat OpenShift Data Science (RHODS)"}, {"cpe": "cpe:/a:redhat:openshift_data_science", "fix_state": "Not affected", "package_name": "rhods/odh-rhel8-operator", "product_name": "Red Hat OpenShift Data Science (RHODS)"}], "public_date": "2024-09-18T17:15:19Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2024-45813\nhttps://nvd.nist.gov/vuln/detail/CVE-2024-45813\nhttps://blakeembrey.com/posts/2024-09-web-redos\nhttps://github.com/delvedor/find-my-way/commit/5e9e0eb5d8d438e06a185d5e536a896572dd0440\nhttps://github.com/delvedor/find-my-way/security/advisories/GHSA-rrr8-f88r-h8q6"], "threat_severity": "Moderate"}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact Low

User Interaction None

Exploitation none

Automatable no

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object