RHSA-2022:2280HighCVSS 7.5
Red Hat Security Advisory: OpenShift Container Platform 3.11.705 security update
🔗 CVE IDs covered (3)
📋 Description
CVE-2022-21698 — prometheus/client_golang: Denial of service using InstrumentHandlerCounter CVE-2022-29036 — credentials: Stored XSS vulnerabilities in jenkins plugin CVE-2022-29046 — subversion: Stored XSS vulnerabilities in Jenkins subversion plugin
🔗 References (7)
- selfhttps://access.redhat.com/errata/RHSA-2022:2280
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2045880
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2071682
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2074847
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2074851
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_2280.json