What is RHSA-2022:1476?

RHSA-2022:1476 is a security advisory published by Red Hat Product Security with Medium severity. Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.4.3 security updates and bug fixes

What is the CVSS v3 score of RHSA-2022:1476?

RHSA-2022:1476 has a CVSS v3 base score of 8.8, published by Red Hat Product Security.

RHSA-2022:1476MediumCVSS 8.8

Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.4.3 security updates and bug fixes

Vendor

Red Hat Product Security

Published

April 21, 2022

Last Modified

June 17, 2026

🔗 CVE IDs covered (12)

CVE-2021-23518 →CVE-2021-23566 →CVE-2021-41190 →CVE-2021-43565 →CVE-2022-0144 →CVE-2022-0235 →CVE-2022-0536 →CVE-2022-0778 →CVE-2022-0155 →CVE-2022-24450 →CVE-2022-24778 →CVE-2022-27191 →

📋 Description

CVE-2021-23518 — cached-path-relative: Prototype Pollution via the cache variable CVE-2021-23566 — nanoid: Information disclosure via valueOf() function CVE-2021-41190 — opencontainers: OCI manifest and index parsing confusion CVE-2021-43565 — golang.org/x/crypto: empty plaintext packet causes panic CVE-2022-0144 — nodejs-shelljs: improper privilege management CVE-2022-0155 — follow-redirects: Exposure of Private Personal Information to an Unauthorized Actor CVE-2022-0235 — node-fetch: exposure of sensitive information to an unauthorized actor CVE-2022-0536 — follow-redirects: Exposure of Sensitive Information via Authorization Header leak CVE-2022-0778 — openssl: Infinite loop in BN_mod_sqrt() reachable when parsing certificates CVE-2022-24450 — nats-server: misusing the "dynamically provisioned sandbox accounts" feature authenticated user can obtain the privileges of the System account CVE-2022-24778 — imgcrypt: Unauthorized access to encryted container image on a shared system due to missing check in CheckAuthorization() code path CVE-2022-27191 — golang: crash in a golang.org/x/crypto/ssh server

🔗 CVE IDs covered (12)

📋 Description

🔗 References (30)