RHSA-2025:22684HighCVSS 8.5
Red Hat Security Advisory: Red Hat Advanced Cluster Management for Kubernetes 2.12.6 security update
🔗 CVE IDs covered (7)
CVE-2025-53547 · pendingCVE-2025-58754 · pendingCVE-2022-21698 →CVE-2024-24786 →CVE-2025-7195 →CVE-2025-27144 →CVE-2025-47907 · pending
📋 Description
CVE-2022-21698 — prometheus/client_golang: Denial of service using InstrumentHandlerCounter CVE-2024-24786 — golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON CVE-2025-7195 — operator-sdk: privilege escalation due to incorrect permissions of /etc/passwd CVE-2025-27144 — go-jose: Go JOSE's Parsing Vulnerable to Denial of Service CVE-2025-47907 — database/sql: Postgres Scan Race Condition CVE-2025-53547 — helm.sh/helm/v3: Helm Chart Code Execution CVE-2025-58754 — axios: Axios DoS via lack of data size check
🔗 References (11)
- selfhttps://access.redhat.com/errata/RHSA-2025:22684
- externalhttps://access.redhat.com/security/cve/CVE-2022-21698
- externalhttps://access.redhat.com/security/cve/CVE-2024-24786
- externalhttps://access.redhat.com/security/cve/CVE-2025-27144
- externalhttps://access.redhat.com/security/cve/CVE-2025-47907
- externalhttps://access.redhat.com/security/cve/CVE-2025-53547
- externalhttps://access.redhat.com/security/cve/CVE-2025-58754
- externalhttps://access.redhat.com/security/cve/CVE-2025-7195
- externalhttps://access.redhat.com/security/updates/classification/
- externalhttps://access.redhat.com/security/updates/classification/#important
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_22684.json