CVE-2021-32760 - Vulnerability Details

containerd is a container runtime. A bug was found in containerd versions prior to 1.4.8 and 1.5.4 where pulling and extracting a specially-crafted container image can result in Unix file permission changes for existing files in the host’s filesystem. Changes to file permissions can deny access to the expected owner of the file, widen access to others, or set extended bits like setuid, setgid, and sticky. This bug does not directly allow files to be read, modified, or executed without an additional cooperating process. This bug has been fixed in containerd 1.5.4 and 1.4.8. As a workaround, ensure that users only pull images from trusted sources. Linux security modules (LSMs) like SELinux and AppArmor can limit the files potentially affected by this bug through policies and profiles that prevent containerd from interacting with specific files.

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction Required

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:M/Au:N/C:P/I:P/A:P

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact partial

Vendors	Products
Fedoraproject	Fedora
Linuxfoundation	Containerd
Redhat	Openstack Service Mesh

Configuration 1 [-]

OR	cpe:2.3:a:linuxfoundation:containerd::::::::
	cpe:2.3:a:linuxfoundation:containerd::::::::

Configuration 2 [-]

cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*

Package	CPE	Advisory	Released Date
Red Hat OpenShift Service Mesh 2.4 for RHEL 8
openshift-service-mesh/grafana-rhel8:2.4.4-2	cpe:/a:redhat:service_mesh:2.4::el8	RHSA-2023:5952	2023-10-19T00:00:00Z
openshift-service-mesh/istio-cni-rhel8:2.4.4-5	cpe:/a:redhat:service_mesh:2.4::el8	RHSA-2023:5952	2023-10-19T00:00:00Z
openshift-service-mesh/istio-must-gather-rhel8:2.4.4-3	cpe:/a:redhat:service_mesh:2.4::el8	RHSA-2023:5952	2023-10-19T00:00:00Z
openshift-service-mesh/istio-rhel8-operator:2.4.4-6	cpe:/a:redhat:service_mesh:2.4::el8	RHSA-2023:5952	2023-10-19T00:00:00Z
openshift-service-mesh/kiali-rhel8:1.65.9-4	cpe:/a:redhat:service_mesh:2.4::el8	RHSA-2023:5952	2023-10-19T00:00:00Z
openshift-service-mesh/kiali-rhel8-operator:1.65.9-1	cpe:/a:redhat:service_mesh:2.4::el8	RHSA-2023:5952	2023-10-19T00:00:00Z
openshift-service-mesh/pilot-rhel8:2.4.4-5	cpe:/a:redhat:service_mesh:2.4::el8	RHSA-2023:5952	2023-10-19T00:00:00Z
openshift-service-mesh/proxyv2-rhel8:2.4.4-5	cpe:/a:redhat:service_mesh:2.4::el8	RHSA-2023:5952	2023-10-19T00:00:00Z
openshift-service-mesh/ratelimit-rhel8:2.4.4-2	cpe:/a:redhat:service_mesh:2.4::el8	RHSA-2023:5952	2023-10-19T00:00:00Z
Red Hat OpenStack Platform 16.2
rhosp-rhel8-tech-preview/osp-director-operator:1.2.3-2	cpe:/a:redhat:openstack:16.2::el8	RHSA-2022:2183	2022-05-11T00:00:00Z

References

Link	Providers
https://github.com/containerd/containerd/releases/tag/v1.4.8
https://github.com/containerd/containerd/releases/tag/v1.5.4
https://github.com/containerd/containerd/security/advisories/GHSA-c72p-9xmj-rx3w
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DDMNDPJJTP3J5GOEDB66F6MGXUTRG3Y3/
https://nvd.nist.gov/vuln/detail/CVE-2021-32760
https://security.gentoo.org/glsa/202401-31
https://www.cve.org/CVERecord?id=CVE-2021-32760

History

Tue, 19 Nov 2024 15:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2021-07-19T00:00:00

Updated: 2024-11-19T14:27:20.905Z

Reserved: 2021-05-12T00:00:00

Link: CVE-2021-32760

Vulnrichment

Updated: 2024-08-03T23:33:55.800Z

NVD

Status : Modified

Published: 2021-07-19T21:15:07.857

Modified: 2024-11-21T06:07:41.097

Link: CVE-2021-32760

Redhat

Severity : Moderate

Publid Date: 2021-07-19T00:00:00Z

Links: CVE-2021-32760 - Bugzilla

Show plain JSON

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2021-32760", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "assignerShortName": "GitHub_M", "dateUpdated": "2024-11-19T14:27:20.905Z", "dateReserved": "2021-05-12T00:00:00", "datePublished": "2021-07-19T00:00:00"}, "containers": {"cna": {"title": "Archive package allows chmod of file outside of unpack target directory", "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-01-31T13:06:23.914511"}, "descriptions": [{"lang": "en", "value": "containerd is a container runtime. A bug was found in containerd versions prior to 1.4.8 and 1.5.4 where pulling and extracting a specially-crafted container image can result in Unix file permission changes for existing files in the host\u2019s filesystem. Changes to file permissions can deny access to the expected owner of the file, widen access to others, or set extended bits like setuid, setgid, and sticky. This bug does not directly allow files to be read, modified, or executed without an additional cooperating process. This bug has been fixed in containerd 1.5.4 and 1.4.8. As a workaround, ensure that users only pull images from trusted sources. Linux security modules (LSMs) like SELinux and AppArmor can limit the files potentially affected by this bug through policies and profiles that prevent containerd from interacting with specific files."}], "affected": [{"vendor": "containerd", "product": "containerd", "versions": [{"version": "<= 1.4.7", "status": "affected"}, {"version": ">= 1.5.0, <= 1.5.3", "status": "affected"}]}], "references": [{"url": "https://github.com/containerd/containerd/security/advisories/GHSA-c72p-9xmj-rx3w"}, {"url": "https://github.com/containerd/containerd/releases/tag/v1.4.8"}, {"url": "https://github.com/containerd/containerd/releases/tag/v1.5.4"}, {"name": "FEDORA-2021-53ce601cb0", "tags": ["vendor-advisory"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DDMNDPJJTP3J5GOEDB66F6MGXUTRG3Y3/"}, {"name": "GLSA-202401-31", "tags": ["vendor-advisory"], "url": "https://security.gentoo.org/glsa/202401-31"}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L", "attackVector": "NETWORK", "attackComplexity": "HIGH", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "LOW", "baseScore": 5, "baseSeverity": "MEDIUM"}}], "problemTypes": [{"descriptions": [{"type": "CWE", "lang": "en", "description": "CWE-668: Exposure of Resource to Wrong Sphere", "cweId": "CWE-668"}]}], "source": {"advisory": "GHSA-c72p-9xmj-rx3w", "discovery": "UNKNOWN"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T23:33:55.800Z"}, "title": "CVE Program Container", "references": [{"url": "https://github.com/containerd/containerd/security/advisories/GHSA-c72p-9xmj-rx3w", "tags": ["x_transferred"]}, {"url": "https://github.com/containerd/containerd/releases/tag/v1.4.8", "tags": ["x_transferred"]}, {"url": "https://github.com/containerd/containerd/releases/tag/v1.5.4", "tags": ["x_transferred"]}, {"name": "FEDORA-2021-53ce601cb0", "tags": ["vendor-advisory", "x_transferred"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DDMNDPJJTP3J5GOEDB66F6MGXUTRG3Y3/"}, {"name": "GLSA-202401-31", "tags": ["vendor-advisory", "x_transferred"], "url": "https://security.gentoo.org/glsa/202401-31"}]}, {"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-11-19T14:27:11.335304Z", "id": "CVE-2021-32760", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-11-19T14:27:20.905Z"}}]}}

{

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

cveMetadata : { »

state : PUBLISHED (string)

cveId : CVE-2021-32760 (string)

assignerOrgId : a0819718-46f1-4df5-94e2-005712e83aaa (string)

assignerShortName : GitHub_M (string)

dateUpdated : 2024-11-19T14:27:20.905Z (string)

dateReserved : 2021-05-12T00:00:00 (string)

datePublished : 2021-07-19T00:00:00 (string)

}

containers : { »

cna : { »

title : Archive package allows chmod of file outside of unpack target directory (string)

providerMetadata : { »

orgId : a0819718-46f1-4df5-94e2-005712e83aaa (string)

shortName : GitHub_M (string)

dateUpdated : 2024-01-31T13:06:23.914511 (string)

}

descriptions : [ »

0 : { »

lang : en (string)

value : containerd is a container runtime. A bug was found in containerd versions prior to 1.4.8 and 1.5.4 where pulling and extracting a specially-crafted container image can result in Unix file permission changes for existing files in the host’s filesystem. Changes to file permissions can deny access to the expected owner of the file, widen access to others, or set extended bits like setuid, setgid, and sticky. This bug does not directly allow files to be read, modified, or executed without an additional cooperating process. This bug has been fixed in containerd 1.5.4 and 1.4.8. As a workaround, ensure that users only pull images from trusted sources. Linux security modules (LSMs) like SELinux and AppArmor can limit the files potentially affected by this bug through policies and profiles that prevent containerd from interacting with specific files. (string)

}

]

affected : [ »

0 : { »

vendor : containerd (string)

product : containerd (string)

versions : [ »

0 : { »

version : <= 1.4.7 (string)

status : affected (string)

}

1 : { »

version : >= 1.5.0, <= 1.5.3 (string)

status : affected (string)

}

]

}

]

references : [ »

0 : { »

url : https://github.com/containerd/containerd/security/advisories/GHSA-c72p-9xmj-rx3w (string)

}

1 : { »

url : https://github.com/containerd/containerd/releases/tag/v1.4.8 (string)

}

2 : { »

url : https://github.com/containerd/containerd/releases/tag/v1.5.4 (string)

}

3 : { »

name : FEDORA-2021-53ce601cb0 (string)

tags : [ »

0 : vendor-advisory (string)

]

url : https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DDMNDPJJTP3J5GOEDB66F6MGXUTRG3Y3/ (string)

}

4 : { »

name : GLSA-202401-31 (string)

tags : [ »

0 : vendor-advisory (string)

]

url : https://security.gentoo.org/glsa/202401-31 (string)

}

]

metrics : [ »

0 : { »

cvssV3_1 : { »

version : 3.1 (string)

vectorString : CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L (string)

attackVector : NETWORK (string)

attackComplexity : HIGH (string)

privilegesRequired : NONE (string)

userInteraction : REQUIRED (string)

scope : UNCHANGED (string)

confidentialityImpact : LOW (string)

integrityImpact : LOW (string)

availabilityImpact : LOW (string)

baseScore : 5 (number)

baseSeverity : MEDIUM (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

type : CWE (string)

lang : en (string)

description : CWE-668: Exposure of Resource to Wrong Sphere (string)

cweId : CWE-668 (string)

}

]

}

]

source : { »

advisory : GHSA-c72p-9xmj-rx3w (string)

discovery : UNKNOWN (string)

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-03T23:33:55.800Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

url : https://github.com/containerd/containerd/security/advisories/GHSA-c72p-9xmj-rx3w (string)

tags : [ »

0 : x_transferred (string)

]

}

1 : { »

url : https://github.com/containerd/containerd/releases/tag/v1.4.8 (string)

tags : [ »

0 : x_transferred (string)

]

}

2 : { »

url : https://github.com/containerd/containerd/releases/tag/v1.5.4 (string)

tags : [ »

0 : x_transferred (string)

]

}

3 : { »

name : FEDORA-2021-53ce601cb0 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_transferred (string)

]

url : https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DDMNDPJJTP3J5GOEDB66F6MGXUTRG3Y3/ (string)

}

4 : { »

name : GLSA-202401-31 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_transferred (string)

]

url : https://security.gentoo.org/glsa/202401-31 (string)

}

]

}

1 : { »

metrics : [ »

0 : { »

other : { »

type : ssvc (string)

content : { »

timestamp : 2024-11-19T14:27:11.335304Z (string)

id : CVE-2021-32760 (string)

options : [ »

0 : { »

Exploitation : none (string)

}

1 : { »

Automatable : no (string)

}

2 : { »

Technical Impact : partial (string)

}

]

role : CISA Coordinator (string)

version : 2.0.3 (string)

}

]

title : CISA ADP Vulnrichment (string)

providerMetadata : { »

orgId : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

shortName : CISA-ADP (string)

dateUpdated : 2024-11-19T14:27:20.905Z (string)

}

]

}

Show plain JSON

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://github.com/containerd/containerd/security/advisories/GHSA-c72p-9xmj-rx3w", "tags": ["x_transferred"]}, {"url": "https://github.com/containerd/containerd/releases/tag/v1.4.8", "tags": ["x_transferred"]}, {"url": "https://github.com/containerd/containerd/releases/tag/v1.5.4", "tags": ["x_transferred"]}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DDMNDPJJTP3J5GOEDB66F6MGXUTRG3Y3/", "name": "FEDORA-2021-53ce601cb0", "tags": ["vendor-advisory", "x_transferred"]}, {"url": "https://security.gentoo.org/glsa/202401-31", "name": "GLSA-202401-31", "tags": ["vendor-advisory", "x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T23:33:55.800Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2021-32760", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-11-19T14:27:11.335304Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-11-19T14:27:17.702Z"}}], "cna": {"title": "Archive package allows chmod of file outside of unpack target directory", "source": {"advisory": "GHSA-c72p-9xmj-rx3w", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}}], "affected": [{"vendor": "containerd", "product": "containerd", "versions": [{"status": "affected", "version": "<= 1.4.7"}, {"status": "affected", "version": ">= 1.5.0, <= 1.5.3"}]}], "references": [{"url": "https://github.com/containerd/containerd/security/advisories/GHSA-c72p-9xmj-rx3w"}, {"url": "https://github.com/containerd/containerd/releases/tag/v1.4.8"}, {"url": "https://github.com/containerd/containerd/releases/tag/v1.5.4"}, {"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DDMNDPJJTP3J5GOEDB66F6MGXUTRG3Y3/", "name": "FEDORA-2021-53ce601cb0", "tags": ["vendor-advisory"]}, {"url": "https://security.gentoo.org/glsa/202401-31", "name": "GLSA-202401-31", "tags": ["vendor-advisory"]}], "descriptions": [{"lang": "en", "value": "containerd is a container runtime. A bug was found in containerd versions prior to 1.4.8 and 1.5.4 where pulling and extracting a specially-crafted container image can result in Unix file permission changes for existing files in the host\u2019s filesystem. Changes to file permissions can deny access to the expected owner of the file, widen access to others, or set extended bits like setuid, setgid, and sticky. This bug does not directly allow files to be read, modified, or executed without an additional cooperating process. This bug has been fixed in containerd 1.5.4 and 1.4.8. As a workaround, ensure that users only pull images from trusted sources. Linux security modules (LSMs) like SELinux and AppArmor can limit the files potentially affected by this bug through policies and profiles that prevent containerd from interacting with specific files."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-668", "description": "CWE-668: Exposure of Resource to Wrong Sphere"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-01-31T13:06:23.914511"}}}, "cveMetadata": {"cveId": "CVE-2021-32760", "state": "PUBLISHED", "dateUpdated": "2024-11-19T14:27:20.905Z", "dateReserved": "2021-05-12T00:00:00", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2021-07-19T00:00:00", "assignerShortName": "GitHub_M"}, "dataVersion": "5.1"}

{

dataType : CVE_RECORD (string)

containers : { »

adp : [ »

0 : { »

title : CVE Program Container (string)

references : [ »

0 : { »

url : https://github.com/containerd/containerd/security/advisories/GHSA-c72p-9xmj-rx3w (string)

tags : [ »

0 : x_transferred (string)

]

}

1 : { »

url : https://github.com/containerd/containerd/releases/tag/v1.4.8 (string)

tags : [ »

0 : x_transferred (string)

]

}

2 : { »

url : https://github.com/containerd/containerd/releases/tag/v1.5.4 (string)

tags : [ »

0 : x_transferred (string)

]

}

3 : { »

url : https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DDMNDPJJTP3J5GOEDB66F6MGXUTRG3Y3/ (string)

name : FEDORA-2021-53ce601cb0 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_transferred (string)

]

}

4 : { »

url : https://security.gentoo.org/glsa/202401-31 (string)

name : GLSA-202401-31 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_transferred (string)

]

}

]

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-03T23:33:55.800Z (string)

}

1 : { »

title : CISA ADP Vulnrichment (string)

metrics : [ »

0 : { »

other : { »

type : ssvc (string)

content : { »

id : CVE-2021-32760 (string)

role : CISA Coordinator (string)

options : [ »

0 : { »

Exploitation : none (string)

}

1 : { »

Automatable : no (string)

}

2 : { »

Technical Impact : partial (string)

}

]

version : 2.0.3 (string)

timestamp : 2024-11-19T14:27:11.335304Z (string)

}

]

providerMetadata : { »

orgId : 134c704f-9b21-4f2e-91b3-4a467353bcc0 (string)

shortName : CISA-ADP (string)

dateUpdated : 2024-11-19T14:27:17.702Z (string)

}

]

cna : { »

title : Archive package allows chmod of file outside of unpack target directory (string)

source : { »

advisory : GHSA-c72p-9xmj-rx3w (string)

discovery : UNKNOWN (string)

}

metrics : [ »

0 : { »

cvssV3_1 : { »

scope : UNCHANGED (string)

version : 3.1 (string)

baseScore : 5 (number)

attackVector : NETWORK (string)

baseSeverity : MEDIUM (string)

vectorString : CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L (string)

integrityImpact : LOW (string)

userInteraction : REQUIRED (string)

attackComplexity : HIGH (string)

availabilityImpact : LOW (string)

privilegesRequired : NONE (string)

confidentialityImpact : LOW (string)

}

]

affected : [ »

0 : { »

vendor : containerd (string)

product : containerd (string)

versions : [ »

0 : { »

status : affected (string)

version : <= 1.4.7 (string)

}

1 : { »

status : affected (string)

version : >= 1.5.0, <= 1.5.3 (string)

}

]

}

]

references : [ »

0 : { »

url : https://github.com/containerd/containerd/security/advisories/GHSA-c72p-9xmj-rx3w (string)

}

1 : { »

url : https://github.com/containerd/containerd/releases/tag/v1.4.8 (string)

}

2 : { »

url : https://github.com/containerd/containerd/releases/tag/v1.5.4 (string)

}

3 : { »

url : https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DDMNDPJJTP3J5GOEDB66F6MGXUTRG3Y3/ (string)

name : FEDORA-2021-53ce601cb0 (string)

tags : [ »

0 : vendor-advisory (string)

]

}

4 : { »

url : https://security.gentoo.org/glsa/202401-31 (string)

name : GLSA-202401-31 (string)

tags : [ »

0 : vendor-advisory (string)

]

}

]

descriptions : [ »

0 : { »

lang : en (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

lang : en (string)

type : CWE (string)

cweId : CWE-668 (string)

description : CWE-668: Exposure of Resource to Wrong Sphere (string)

}

]

}

]

providerMetadata : { »

orgId : a0819718-46f1-4df5-94e2-005712e83aaa (string)

shortName : GitHub_M (string)

dateUpdated : 2024-01-31T13:06:23.914511 (string)

}

cveMetadata : { »

cveId : CVE-2021-32760 (string)

state : PUBLISHED (string)

dateUpdated : 2024-11-19T14:27:20.905Z (string)

dateReserved : 2021-05-12T00:00:00 (string)

assignerOrgId : a0819718-46f1-4df5-94e2-005712e83aaa (string)

datePublished : 2021-07-19T00:00:00 (string)

assignerShortName : GitHub_M (string)

}

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:linuxfoundation:containerd:*:*:*:*:*:*:*:*", "matchCriteriaId": "B80F3640-4786-43D6-B222-FBE9A98B86D8", "versionEndExcluding": "1.4.8", "vulnerable": true}, {"criteria": "cpe:2.3:a:linuxfoundation:containerd:*:*:*:*:*:*:*:*", "matchCriteriaId": "B29F81BF-E74A-4C4E-ADEE-7A70AA58A9DC", "versionEndExcluding": "1.5.4", "versionStartIncluding": "1.5.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*", "matchCriteriaId": "A930E247-0B43-43CB-98FF-6CE7B8189835", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "containerd is a container runtime. A bug was found in containerd versions prior to 1.4.8 and 1.5.4 where pulling and extracting a specially-crafted container image can result in Unix file permission changes for existing files in the host\u2019s filesystem. Changes to file permissions can deny access to the expected owner of the file, widen access to others, or set extended bits like setuid, setgid, and sticky. This bug does not directly allow files to be read, modified, or executed without an additional cooperating process. This bug has been fixed in containerd 1.5.4 and 1.4.8. As a workaround, ensure that users only pull images from trusted sources. Linux security modules (LSMs) like SELinux and AppArmor can limit the files potentially affected by this bug through policies and profiles that prevent containerd from interacting with specific files."}, {"lang": "es", "value": "containerd es un tiempo de ejecuci\u00f3n de contenedores. Se ha encontrado un bug en las versiones de containerd anteriores a 1.4.8 y la 1.5.4, donde tirando y extrayendo una imagen de contenedor especialmente dise\u00f1ada puede resultar en cambios en los permisos de archivos Unix para los archivos existentes en el sistema de archivos del host. Los cambios en los permisos de los archivos pueden denegar el acceso al propietario esperado del archivo, ampliar el acceso a otros, o establecer bits extendidos como setuid, setgid y sticky. Este bug no permite directamente la lectura, modificaci\u00f3n o ejecuci\u00f3n de archivos sin un proceso adicional de cooperaci\u00f3n. Este bug ha sido corregido en containerd versiones 1.5.4 y 1.4.8. Como soluci\u00f3n, aseg\u00farese de que los usuarios s\u00f3lo obtienen im\u00e1genes de fuentes de confianza. Los m\u00f3dulos de seguridad de Linux (LSM) como SELinux y AppArmor pueden limitar los archivos potencialmente afectados por este bug mediante pol\u00edticas y perfiles que impiden que containerd interact\u00fae con archivos espec\u00edficos"}], "id": "CVE-2021-32760", "lastModified": "2024-11-21T06:07:41.097", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.0, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L", "version": "3.1"}, "exploitabilityScore": 1.6, "impactScore": 3.4, "source": "security-advisories@github.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 6.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.4, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2021-07-19T21:15:07.857", "references": [{"source": "security-advisories@github.com", "tags": ["Release Notes", "Third Party Advisory"], "url": "https://github.com/containerd/containerd/releases/tag/v1.4.8"}, {"source": "security-advisories@github.com", "tags": ["Release Notes", "Third Party Advisory"], "url": "https://github.com/containerd/containerd/releases/tag/v1.5.4"}, {"source": "security-advisories@github.com", "tags": ["Third Party Advisory"], "url": "https://github.com/containerd/containerd/security/advisories/GHSA-c72p-9xmj-rx3w"}, {"source": "security-advisories@github.com", "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DDMNDPJJTP3J5GOEDB66F6MGXUTRG3Y3/"}, {"source": "security-advisories@github.com", "url": "https://security.gentoo.org/glsa/202401-31"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes", "Third Party Advisory"], "url": "https://github.com/containerd/containerd/releases/tag/v1.4.8"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes", "Third Party Advisory"], "url": "https://github.com/containerd/containerd/releases/tag/v1.5.4"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://github.com/containerd/containerd/security/advisories/GHSA-c72p-9xmj-rx3w"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DDMNDPJJTP3J5GOEDB66F6MGXUTRG3Y3/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://security.gentoo.org/glsa/202401-31"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-668"}], "source": "security-advisories@github.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-732"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:linuxfoundation:containerd:*:*:*:*:*:*:*:* (string)

matchCriteriaId : B80F3640-4786-43D6-B222-FBE9A98B86D8 (string)

versionEndExcluding : 1.4.8 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:a:linuxfoundation:containerd:*:*:*:*:*:*:*:* (string)

matchCriteriaId : B29F81BF-E74A-4C4E-ADEE-7A70AA58A9DC (string)

versionEndExcluding : 1.5.4 (string)

versionStartIncluding : 1.5.0 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

1 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:* (string)

matchCriteriaId : A930E247-0B43-43CB-98FF-6CE7B8189835 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

]

descriptions : [ »

0 : { »

lang : en (string)

}

1 : { »

lang : es (string)

value : containerd es un tiempo de ejecución de contenedores. Se ha encontrado un bug en las versiones de containerd anteriores a 1.4.8 y la 1.5.4, donde tirando y extrayendo una imagen de contenedor especialmente diseñada puede resultar en cambios en los permisos de archivos Unix para los archivos existentes en el sistema de archivos del host. Los cambios en los permisos de los archivos pueden denegar el acceso al propietario esperado del archivo, ampliar el acceso a otros, o establecer bits extendidos como setuid, setgid y sticky. Este bug no permite directamente la lectura, modificación o ejecución de archivos sin un proceso adicional de cooperación. Este bug ha sido corregido en containerd versiones 1.5.4 y 1.4.8. Como solución, asegúrese de que los usuarios sólo obtienen imágenes de fuentes de confianza. Los módulos de seguridad de Linux (LSM) como SELinux y AppArmor pueden limitar los archivos potencialmente afectados por este bug mediante políticas y perfiles que impiden que containerd interactúe con archivos específicos (string)

}

]

id : CVE-2021-32760 (string)

lastModified : 2024-11-21T06:07:41.097 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : false (boolean)

baseSeverity : MEDIUM (string)

cvssData : { »

accessComplexity : MEDIUM (string)

accessVector : NETWORK (string)

authentication : NONE (string)

availabilityImpact : PARTIAL (string)

baseScore : 6.8 (number)

confidentialityImpact : PARTIAL (string)

integrityImpact : PARTIAL (string)

vectorString : AV:N/AC:M/Au:N/C:P/I:P/A:P (string)

version : 2.0 (string)

}

exploitabilityScore : 8.6 (number)

impactScore : 6.4 (number)

obtainAllPrivilege : false (boolean)

obtainOtherPrivilege : false (boolean)

obtainUserPrivilege : false (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : true (boolean)

}

]

cvssMetricV31 : [ »

0 : { »

cvssData : { »

attackComplexity : HIGH (string)

attackVector : NETWORK (string)

availabilityImpact : LOW (string)

baseScore : 5 (number)

baseSeverity : MEDIUM (string)

confidentialityImpact : LOW (string)

integrityImpact : LOW (string)

privilegesRequired : NONE (string)

scope : UNCHANGED (string)

userInteraction : REQUIRED (string)

vectorString : CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L (string)

version : 3.1 (string)

}

exploitabilityScore : 1.6 (number)

impactScore : 3.4 (number)

source : security-advisories@github.com (string)

type : Secondary (string)

}

1 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : NETWORK (string)

availabilityImpact : LOW (string)

baseScore : 6.3 (number)

baseSeverity : MEDIUM (string)

confidentialityImpact : LOW (string)

integrityImpact : LOW (string)

privilegesRequired : NONE (string)

scope : UNCHANGED (string)

userInteraction : REQUIRED (string)

vectorString : CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L (string)

version : 3.1 (string)

}

exploitabilityScore : 2.8 (number)

impactScore : 3.4 (number)

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

published : 2021-07-19T21:15:07.857 (string)

references : [ »

0 : { »

source : security-advisories@github.com (string)

tags : [ »

0 : Release Notes (string)

1 : Third Party Advisory (string)

]

url : https://github.com/containerd/containerd/releases/tag/v1.4.8 (string)

}

1 : { »

source : security-advisories@github.com (string)

tags : [ »

0 : Release Notes (string)

1 : Third Party Advisory (string)

]

url : https://github.com/containerd/containerd/releases/tag/v1.5.4 (string)

}

2 : { »

source : security-advisories@github.com (string)

tags : [ »

0 : Third Party Advisory (string)

]

url : https://github.com/containerd/containerd/security/advisories/GHSA-c72p-9xmj-rx3w (string)

}

3 : { »

source : security-advisories@github.com (string)

url : https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DDMNDPJJTP3J5GOEDB66F6MGXUTRG3Y3/ (string)

}

4 : { »

source : security-advisories@github.com (string)

url : https://security.gentoo.org/glsa/202401-31 (string)

}

5 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Release Notes (string)

1 : Third Party Advisory (string)

]

url : https://github.com/containerd/containerd/releases/tag/v1.4.8 (string)

}

6 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Release Notes (string)

1 : Third Party Advisory (string)

]

url : https://github.com/containerd/containerd/releases/tag/v1.5.4 (string)

}

7 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Third Party Advisory (string)

]

url : https://github.com/containerd/containerd/security/advisories/GHSA-c72p-9xmj-rx3w (string)

}

8 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DDMNDPJJTP3J5GOEDB66F6MGXUTRG3Y3/ (string)

}

9 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : https://security.gentoo.org/glsa/202401-31 (string)

}

]

sourceIdentifier : security-advisories@github.com (string)

vulnStatus : Modified (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-668 (string)

}

]

source : security-advisories@github.com (string)

type : Secondary (string)

}

1 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-732 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Show plain JSON

{"acknowledgement": "Red Hat would like to thank distros (distros) for reporting this issue.", "affected_release": [{"advisory": "RHSA-2023:5952", "cpe": "cpe:/a:redhat:service_mesh:2.4::el8", "package": "openshift-service-mesh/grafana-rhel8:2.4.4-2", "product_name": "Red Hat OpenShift Service Mesh 2.4 for RHEL 8", "release_date": "2023-10-19T00:00:00Z"}, {"advisory": "RHSA-2023:5952", "cpe": "cpe:/a:redhat:service_mesh:2.4::el8", "package": "openshift-service-mesh/istio-cni-rhel8:2.4.4-5", "product_name": "Red Hat OpenShift Service Mesh 2.4 for RHEL 8", "release_date": "2023-10-19T00:00:00Z"}, {"advisory": "RHSA-2023:5952", "cpe": "cpe:/a:redhat:service_mesh:2.4::el8", "package": "openshift-service-mesh/istio-must-gather-rhel8:2.4.4-3", "product_name": "Red Hat OpenShift Service Mesh 2.4 for RHEL 8", "release_date": "2023-10-19T00:00:00Z"}, {"advisory": "RHSA-2023:5952", "cpe": "cpe:/a:redhat:service_mesh:2.4::el8", "package": "openshift-service-mesh/istio-rhel8-operator:2.4.4-6", "product_name": "Red Hat OpenShift Service Mesh 2.4 for RHEL 8", "release_date": "2023-10-19T00:00:00Z"}, {"advisory": "RHSA-2023:5952", "cpe": "cpe:/a:redhat:service_mesh:2.4::el8", "package": "openshift-service-mesh/kiali-rhel8:1.65.9-4", "product_name": "Red Hat OpenShift Service Mesh 2.4 for RHEL 8", "release_date": "2023-10-19T00:00:00Z"}, {"advisory": "RHSA-2023:5952", "cpe": "cpe:/a:redhat:service_mesh:2.4::el8", "package": "openshift-service-mesh/kiali-rhel8-operator:1.65.9-1", "product_name": "Red Hat OpenShift Service Mesh 2.4 for RHEL 8", "release_date": "2023-10-19T00:00:00Z"}, {"advisory": "RHSA-2023:5952", "cpe": "cpe:/a:redhat:service_mesh:2.4::el8", "package": "openshift-service-mesh/pilot-rhel8:2.4.4-5", "product_name": "Red Hat OpenShift Service Mesh 2.4 for RHEL 8", "release_date": "2023-10-19T00:00:00Z"}, {"advisory": "RHSA-2023:5952", "cpe": "cpe:/a:redhat:service_mesh:2.4::el8", "package": "openshift-service-mesh/proxyv2-rhel8:2.4.4-5", "product_name": "Red Hat OpenShift Service Mesh 2.4 for RHEL 8", "release_date": "2023-10-19T00:00:00Z"}, {"advisory": "RHSA-2023:5952", "cpe": "cpe:/a:redhat:service_mesh:2.4::el8", "package": "openshift-service-mesh/ratelimit-rhel8:2.4.4-2", "product_name": "Red Hat OpenShift Service Mesh 2.4 for RHEL 8", "release_date": "2023-10-19T00:00:00Z"}, {"advisory": "RHSA-2022:2183", "cpe": "cpe:/a:redhat:openstack:16.2::el8", "package": "rhosp-rhel8-tech-preview/osp-director-operator:1.2.3-2", "product_name": "Red Hat OpenStack Platform 16.2", "release_date": "2022-05-11T00:00:00Z"}], "bugzilla": {"description": "containerd: pulling and extracting crafted container image may result in Unix file permission changes", "id": "1982681", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1982681"}, "csaw": false, "cvss3": {"cvss3_base_score": "5.5", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L", "status": "verified"}, "cwe": "CWE-281", "details": ["containerd is a container runtime. A bug was found in containerd versions prior to 1.4.8 and 1.5.4 where pulling and extracting a specially-crafted container image can result in Unix file permission changes for existing files in the host\u2019s filesystem. Changes to file permissions can deny access to the expected owner of the file, widen access to others, or set extended bits like setuid, setgid, and sticky. This bug does not directly allow files to be read, modified, or executed without an additional cooperating process. This bug has been fixed in containerd 1.5.4 and 1.4.8. As a workaround, ensure that users only pull images from trusted sources. Linux security modules (LSMs) like SELinux and AppArmor can limit the files potentially affected by this bug through policies and profiles that prevent containerd from interacting with specific files.", "A flaw was found in containerd where pulling and extracting a specially-crafted container image can result in Unix file permission changes for existing files in the host\u2019s filesystem. Changes to file permissions can deny access to the expected owner of the file, widen access to others, or set extended bits like setuid, setgid, and sticky. This bug does not directly allow files to be read, modified, or executed without an additional cooperating process."], "name": "CVE-2021-32760", "package_state": [{"cpe": "cpe:/a:redhat:cert_manager:1", "fix_state": "Under investigation", "package_name": "cert-manager/cert-manager-operator-rhel9", "product_name": "cert-manager Operator for Red Hat OpenShift"}, {"cpe": "cpe:/a:redhat:cert_manager:1", "fix_state": "Under investigation", "package_name": "cert-manager/jetstack-cert-manager-rhel9", "product_name": "cert-manager Operator for Red Hat OpenShift"}, {"cpe": "cpe:/a:redhat:cost_management:1", "fix_state": "Not affected", "package_name": "costmanagement/costmanagement-metrics-rhel8-operator", "product_name": "Cost Management Metrics Operator"}, {"cpe": "cpe:/a:redhat:cryostat:2", "fix_state": "Not affected", "package_name": "cryostat-tech-preview/cryostat-rhel8-operator", "product_name": "Cryostat 2"}, {"cpe": "cpe:/a:redhat:logging:5", "fix_state": "Not affected", "package_name": "openshift-logging/logging-loki-rhel8", "product_name": "Logging Subsystem for Red Hat OpenShift"}, {"cpe": "cpe:/a:redhat:logging:5", "fix_state": "Not affected", "package_name": "openshift-logging/lokistack-gateway-rhel9", "product_name": "Logging Subsystem for Red Hat OpenShift"}, {"cpe": "cpe:/a:redhat:logging:5", "fix_state": "Not affected", "package_name": "openshift-logging/opa-openshift-rhel8", "product_name": "Logging Subsystem for Red Hat OpenShift"}, {"cpe": "cpe:/a:redhat:rhmt", "fix_state": "Not affected", "package_name": "rhmtc/openshift-migration-controller-rhel8", "product_name": "Migration Toolkit for Containers"}, {"cpe": "cpe:/a:redhat:rhmt", "fix_state": "Not affected", "package_name": "rhmtc/openshift-velero-plugin-rhel8", "product_name": "Migration Toolkit for Containers"}, {"cpe": "cpe:/a:redhat:migration_toolkit_virtualization:2", "fix_state": "Not affected", "package_name": "migration-toolkit-virtualization/mtv-controller-rhel9", "product_name": "Migration Toolkit for Virtualization"}, {"cpe": "cpe:/a:redhat:migration_toolkit_virtualization:2", "fix_state": "Not affected", "package_name": "migration-toolkit-virtualization/mtv-rhel8-operator", "product_name": "Migration Toolkit for Virtualization"}, {"cpe": "cpe:/a:redhat:openshift_api_data_protection:1", "fix_state": "Not affected", "package_name": "oadp/oadp-velero-plugin-rhel8", "product_name": "OpenShift API for Data Protection"}, {"cpe": "cpe:/a:redhat:serverless:1", "fix_state": "Not affected", "package_name": "openshift-serverless-1/client-kn-rhel8", "product_name": "OpenShift Serverless"}, {"cpe": "cpe:/a:redhat:serverless:1", "fix_state": "Not affected", "package_name": "openshift-serverless-1/ingress-rhel8-operator", "product_name": "OpenShift Serverless"}, {"cpe": "cpe:/a:redhat:serverless:1", "fix_state": "Not affected", "package_name": "openshift-serverless-1-knative-client-plugin-event-sender-rhel8-container", "product_name": "OpenShift Serverless"}, {"cpe": "cpe:/a:redhat:serverless:1", "fix_state": "Not affected", "package_name": "openshift-serverless-1/serving-queue-rhel8", "product_name": "OpenShift Serverless"}, {"cpe": "cpe:/a:redhat:service_mesh:2", "fix_state": "Not affected", "package_name": "openshift-service-mesh/prometheus-rhel8", "product_name": "OpenShift Service Mesh 2"}, {"cpe": "cpe:/a:redhat:red_hat_3scale_amp:2", "fix_state": "Affected", "package_name": "3scale-operator-container", "product_name": "Red Hat 3scale API Management Platform 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Not affected", "package_name": "acm-multicluster-globalhub-agent-container", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Not affected", "package_name": "containerd", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Not affected", "package_name": "rhacm2/acm-cluster-proxy-rhel8", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Not affected", "package_name": "rhacm2/acm-governance-policy-addon-controller-rhel9", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Not affected", "package_name": "rhacm2/acm-governance-policy-framework-addon-rhel8", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Not affected", "package_name": "rhacm2/acm-grafana-rhel8", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Not affected", "package_name": "rhacm2/acm-prometheus-rhel8", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Not affected", "package_name": "rhacm2/acm-search-v2-rhel8", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Not affected", "package_name": "rhacm2/acm-volsync-addon-controller-rhel9", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Not affected", "package_name": "rhacm2/cert-policy-controller-rhel9", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Not affected", "package_name": "rhacm2/cluster-backup-rhel9-operator", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Not affected", "package_name": "rhacm2/config-policy-controller-rhel9", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Not affected", "package_name": "rhacm2/governance-policy-propagator-rhel8", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Not affected", "package_name": "rhacm2/governance-policy-spec-sync-rhel8", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Not affected", "package_name": "rhacm2/governance-policy-status-sync-rhel8", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Not affected", "package_name": "rhacm2/governance-policy-template-sync-rhel8", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Not affected", "package_name": "rhacm2/iam-policy-controller-rhel8", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Not affected", "package_name": "rhacm2/multiclusterhub-repo-rhel8", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Not affected", "package_name": "rhacm2/multiclusterhub-rhel8", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Not affected", "package_name": "rhacm2/multicluster-operators-application-rhel8", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Not affected", "package_name": "rhacm2/multicluster-operators-channel-rhel8", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Not affected", "package_name": "rhacm2/multicluster-operators-subscription-rhel8", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Not affected", "package_name": "rhacm2/observatorium-rhel8", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Not affected", "package_name": "rhacm2/prometheus-rhel8", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Not affected", "package_name": "rhacm2/rbac-query-proxy-rhel8", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Not affected", "package_name": "rhacm2/search-collector-rhel9", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Not affected", "package_name": "rhacm2/thanos-receive-controller-rhel8", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:acm:2", "fix_state": "Not affected", "package_name": "rhacm2/thanos-rhel7", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2"}, {"cpe": "cpe:/a:redhat:advanced_cluster_security:3", "fix_state": "Not affected", "package_name": "advanced-cluster-security/rhacs-main-rhel8", "product_name": "Red Hat Advanced Cluster Security 3"}, {"cpe": "cpe:/a:redhat:advanced_cluster_security:3", "fix_state": "Not affected", "package_name": "advanced-cluster-security/rhacs-scanner-rhel8", "product_name": "Red Hat Advanced Cluster Security 3"}, {"cpe": "cpe:/a:redhat:advanced_cluster_security:4", "fix_state": "Not affected", "package_name": "advanced-cluster-security/rhacs-main-rhel8", "product_name": "Red Hat Advanced Cluster Security 4"}, {"cpe": "cpe:/a:redhat:advanced_cluster_security:4", "fix_state": "Not affected", "package_name": "advanced-cluster-security/rhacs-scanner-rhel8", "product_name": "Red Hat Advanced Cluster Security 4"}, {"cpe": "cpe:/a:redhat:openshift:3.11", "fix_state": "Not affected", "package_name": "atomic-openshift", "product_name": "Red Hat OpenShift Container Platform 3.11"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/cnf-tests-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/dpu-network-rhel8-operator", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/kubernetes-nmstate-rhel8-operator", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/metallb-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/metallb-rhel8-operator", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/oc-mirror-plugin-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-agent-installer-api-server-rhel9", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-agent-installer-csr-approver-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-agent-installer-node-agent-rhel9", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-alibaba-cloud-controller-manager-rhel9", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-alibaba-cloud-csi-driver-container-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-aws-cluster-api-controllers-rhel9", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-aws-ebs-csi-driver-rhel9", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-aws-efs-csi-driver-container-rhel9", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-azure-cluster-api-controllers-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-azure-disk-csi-driver-rhel9", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-azure-file-csi-driver-rhel9", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-cluster-capacity", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-cluster-capi-operator-container-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-cluster-capi-rhel8-operator", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-cluster-ingress-operator", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-cluster-kube-cluster-api-rhel8-operator", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-cluster-monitoring-operator", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-cluster-network-operator", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-cluster-node-tuning-rhel9-operator", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-cluster-platform-operators-manager-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-cluster-policy-controller-rhel9", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-cluster-storage-operator", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-cluster-version-operator", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-console", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-container-networking-plugins-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-csi-driver-manila-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-csi-driver-nfs-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-csi-driver-shared-resource-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-csi-external-provisioner", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-csi-external-provisioner-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-csi-snapshot-controller", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-csi-snapshot-controller-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-docker-builder", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-docker-registry", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-gcp-cloud-controller-manager-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-gcp-filestore-csi-driver-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-gcp-pd-csi-driver-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-grafana", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-hypershift-rhel9", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-ibm-vpc-block-csi-driver-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-installer", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-local-storage-operator", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-local-storage-static-provisioner", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-machine-api-provider-openstack-rhel9", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-machine-config-operator", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-metering-ansible-operator", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-metering-helm-container-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-multus-admission-controller-rhel9", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-multus-cni", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-multus-networkpolicy-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-network-interface-bond-cni-rhel9", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-node-feature-discovery", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-node-problem-detector-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-oauth-apiserver-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-olm-rukpak-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-openshift-apiserver-rhel9", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-openshift-controller-manager-rhel9", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-operator-marketplace", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-operator-registry-rhel9", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-operator-sdk-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-pod", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-powervs-block-csi-driver-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-prometheus", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-prometheus-rhel9-operator", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-prom-label-proxy", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-ptp-operator", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-sdn-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-sriov-network-webhook", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-tests", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-thanos-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-tools-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-vsphere-cloud-controller-manager-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-vsphere-cluster-api-controllers-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ose-vsphere-csi-driver-syncer-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/special-resource-rhel8-operator", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/topology-aware-lifecycle-manager-rhel8-operator", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4-wincw/windows-machine-config-rhel8-operator", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift4/ztp-site-generate-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift-security-profiles-operator-container", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "openshift-tech-preview/metallb-rhel8", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Not affected", "package_name": "redhat/redhat-operator-index", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:assisted_installer:", "fix_state": "Not affected", "package_name": "rhai-tech-preview/assisted-installer-agent-rhel8", "product_name": "Red Hat OpenShift Container Platform Assisted Installer"}, {"cpe": "cpe:/a:redhat:assisted_installer:", "fix_state": "Not affected", "package_name": "rhai-tech-preview/assisted-installer-rhel8", "product_name": "Red Hat OpenShift Container Platform Assisted Installer"}, {"cpe": "cpe:/a:redhat:openshift_container_storage:4", "fix_state": "Not affected", "package_name": "ocs4/cephcsi-rhel8", "product_name": "Red Hat Openshift Container Storage 4"}, {"cpe": "cpe:/a:redhat:openshift_container_storage:4", "fix_state": "Not affected", "package_name": "ocs4/mcg-rhel8-operator", "product_name": "Red Hat Openshift Container Storage 4"}, {"cpe": "cpe:/a:redhat:openshift_container_storage:4", "fix_state": "Not affected", "package_name": "ocs4/ocs-rhel8-operator", "product_name": "Red Hat Openshift Container Storage 4"}, {"cpe": "cpe:/a:redhat:openshift_container_storage:4", "fix_state": "Not affected", "package_name": "ocs4/rook-ceph-rhel8-operator", "product_name": "Red Hat Openshift Container Storage 4"}, {"cpe": "cpe:/a:redhat:openshift_data_foundation:4", "fix_state": "Not affected", "package_name": "odf4/cephcsi-rhel9", "product_name": "Red Hat Openshift Data Foundation 4"}, {"cpe": "cpe:/a:redhat:openshift_data_foundation:4", "fix_state": "Not affected", "package_name": "odf4/mcg-rhel9-operator", "product_name": "Red Hat Openshift Data Foundation 4"}, {"cpe": "cpe:/a:redhat:openshift_data_foundation:4", "fix_state": "Not affected", "package_name": "odf4/ocs-rhel9-operator", "product_name": "Red Hat Openshift Data Foundation 4"}, {"cpe": "cpe:/a:redhat:openshift_data_foundation:4", "fix_state": "Not affected", "package_name": "odf4/odf-csi-addons-sidecar-rhel9", "product_name": "Red Hat Openshift Data Foundation 4"}, {"cpe": "cpe:/a:redhat:openshift_data_foundation:4", "fix_state": "Not affected", "package_name": "odf4/odf-lvm-rhel8-operator", "product_name": "Red Hat Openshift Data Foundation 4"}, {"cpe": "cpe:/a:redhat:openshift_data_foundation:4", "fix_state": "Not affected", "package_name": "odf4/odf-multicluster-rhel9-operator", "product_name": "Red Hat Openshift Data Foundation 4"}, {"cpe": "cpe:/a:redhat:openshift_data_foundation:4", "fix_state": "Not affected", "package_name": "odf4/odf-rhel8-operator", "product_name": "Red Hat Openshift Data Foundation 4"}, {"cpe": "cpe:/a:redhat:openshift_data_foundation:4", "fix_state": "Not affected", "package_name": "odf4/odr-rhel8-operator", "product_name": "Red Hat Openshift Data Foundation 4"}, {"cpe": "cpe:/a:redhat:openshift_data_foundation:4", "fix_state": "Not affected", "package_name": "odf4/rook-ceph-rhel8-operator", "product_name": "Red Hat Openshift Data Foundation 4"}, {"cpe": "cpe:/a:redhat:openshift_data_science", "fix_state": "Not affected", "package_name": "rhods/odh-ml-pipelines-cache-rhel8", "product_name": "Red Hat OpenShift Data Science (RHODS)"}, {"cpe": "cpe:/a:redhat:openshift_data_science", "fix_state": "Not affected", "package_name": "rhods/odh-model-controller-rhel8", "product_name": "Red Hat OpenShift Data Science (RHODS)"}, {"cpe": "cpe:/a:redhat:openshift_data_science", "fix_state": "Not affected", "package_name": "rhods/odh-modelmesh-serving-controller-rhel8", "product_name": "Red Hat OpenShift Data Science (RHODS)"}, {"cpe": "cpe:/a:redhat:openshift_data_science", "fix_state": "Affected", "package_name": "rhods/odh-operator-base-rhel8", "product_name": "Red Hat OpenShift Data Science (RHODS)"}, {"cpe": "cpe:/a:redhat:openshift_devspaces:3:", "fix_state": "Not affected", "package_name": "devspaces/traefik-rhel8", "product_name": "Red Hat OpenShift Dev Spaces"}, {"cpe": "cpe:/a:redhat:openshift_distributed_tracing:2", "fix_state": "Not affected", "package_name": "rhosdt/opentelemetry-rhel8-operator", "product_name": "Red Hat OpenShift distributed tracing 2"}, {"cpe": "cpe:/a:redhat:openshift_gitops:1", "fix_state": "Not affected", "package_name": "openshift-gitops-1/argocd-rhel8", "product_name": "Red Hat OpenShift GitOps"}, {"cpe": "cpe:/a:redhat:openshift_gitops:1", "fix_state": "Not affected", "package_name": "openshift-gitops-1/gitops-rhel8", "product_name": "Red Hat OpenShift GitOps"}, {"cpe": "cpe:/a:redhat:openshift_gitops:1", "fix_state": "Not affected", "package_name": "openshift-gitops-1/gitops-rhel8-operator", "product_name": "Red Hat OpenShift GitOps"}, {"cpe": "cpe:/a:redhat:openshift_gitops:1", "fix_state": "Not affected", "package_name": "openshift-gitops-1/kam-delivery-rhel8", "product_name": "Red Hat OpenShift GitOps"}, {"cpe": "cpe:/a:redhat:openshift_sandboxed_containers:1", "fix_state": "Not affected", "package_name": "openshift-sandboxed-containers/osc-cloud-api-adaptor-rhel9", "product_name": "Red Hat Openshift Sandboxed Containers"}, {"cpe": "cpe:/a:redhat:openshift_sandboxed_containers:1", "fix_state": "Not affected", "package_name": "openshift-sandboxed-containers/osc-rhel8-operator", "product_name": "Red Hat Openshift Sandboxed Containers"}, {"cpe": "cpe:/a:redhat:container_native_virtualization:4", "fix_state": "Not affected", "package_name": "container-native-virtualization/cluster-network-addons-operator", "product_name": "Red Hat OpenShift Virtualization 4"}, {"cpe": "cpe:/a:redhat:container_native_virtualization:4", "fix_state": "Not affected", "package_name": "container-native-virtualization/cluster-network-addons-operator-rhel9", "product_name": "Red Hat OpenShift Virtualization 4"}, {"cpe": "cpe:/a:redhat:container_native_virtualization:4", "fix_state": "Not affected", "package_name": "container-native-virtualization/kubernetes-nmstate-handler-rhel8", "product_name": "Red Hat OpenShift Virtualization 4"}, {"cpe": "cpe:/a:redhat:container_native_virtualization:4", "fix_state": "Not affected", "package_name": "container-native-virtualization/multus-dynamic-networks-rhel9", "product_name": "Red Hat OpenShift Virtualization 4"}, {"cpe": "cpe:/a:redhat:openstack:16.2", "fix_state": "Affected", "package_name": "osp-director-provisioner-container", "product_name": "Red Hat OpenStack Platform 16.2"}, {"cpe": "cpe:/a:redhat:openstack:16.2", "fix_state": "Will not fix", "package_name": "rhosp-rhel8-tech-preview/osp-director-downloader", "product_name": "Red Hat OpenStack Platform 16.2"}, {"cpe": "cpe:/a:redhat:quay:3", "fix_state": "Not affected", "package_name": "quay/quay-builder-rhel8", "product_name": "Red Hat Quay 3"}, {"cpe": "cpe:/a:redhat:quay:3", "fix_state": "Not affected", "package_name": "quay/quay-operator-rhel8", "product_name": "Red Hat Quay 3"}], "public_date": "2021-07-19T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2021-32760\nhttps://nvd.nist.gov/vuln/detail/CVE-2021-32760"], "threat_severity": "Moderate"}

{

acknowledgement : Red Hat would like to thank distros (distros) for reporting this issue. (string)

affected_release : [ »

0 : { »

advisory : RHSA-2023:5952 (string)

cpe : cpe:/a:redhat:service_mesh:2.4::el8 (string)

package : openshift-service-mesh/grafana-rhel8:2.4.4-2 (string)

product_name : Red Hat OpenShift Service Mesh 2.4 for RHEL 8 (string)

release_date : 2023-10-19T00:00:00Z (string)

}

1 : { »

advisory : RHSA-2023:5952 (string)

cpe : cpe:/a:redhat:service_mesh:2.4::el8 (string)

package : openshift-service-mesh/istio-cni-rhel8:2.4.4-5 (string)

product_name : Red Hat OpenShift Service Mesh 2.4 for RHEL 8 (string)

release_date : 2023-10-19T00:00:00Z (string)

}

2 : { »

advisory : RHSA-2023:5952 (string)

cpe : cpe:/a:redhat:service_mesh:2.4::el8 (string)

package : openshift-service-mesh/istio-must-gather-rhel8:2.4.4-3 (string)

product_name : Red Hat OpenShift Service Mesh 2.4 for RHEL 8 (string)

release_date : 2023-10-19T00:00:00Z (string)

}

3 : { »

advisory : RHSA-2023:5952 (string)

cpe : cpe:/a:redhat:service_mesh:2.4::el8 (string)

package : openshift-service-mesh/istio-rhel8-operator:2.4.4-6 (string)

product_name : Red Hat OpenShift Service Mesh 2.4 for RHEL 8 (string)

release_date : 2023-10-19T00:00:00Z (string)

}

4 : { »

advisory : RHSA-2023:5952 (string)

cpe : cpe:/a:redhat:service_mesh:2.4::el8 (string)

package : openshift-service-mesh/kiali-rhel8:1.65.9-4 (string)

product_name : Red Hat OpenShift Service Mesh 2.4 for RHEL 8 (string)

release_date : 2023-10-19T00:00:00Z (string)

}

5 : { »

advisory : RHSA-2023:5952 (string)

cpe : cpe:/a:redhat:service_mesh:2.4::el8 (string)

package : openshift-service-mesh/kiali-rhel8-operator:1.65.9-1 (string)

product_name : Red Hat OpenShift Service Mesh 2.4 for RHEL 8 (string)

release_date : 2023-10-19T00:00:00Z (string)

}

6 : { »

advisory : RHSA-2023:5952 (string)

cpe : cpe:/a:redhat:service_mesh:2.4::el8 (string)

package : openshift-service-mesh/pilot-rhel8:2.4.4-5 (string)

product_name : Red Hat OpenShift Service Mesh 2.4 for RHEL 8 (string)

release_date : 2023-10-19T00:00:00Z (string)

}

7 : { »

advisory : RHSA-2023:5952 (string)

cpe : cpe:/a:redhat:service_mesh:2.4::el8 (string)

package : openshift-service-mesh/proxyv2-rhel8:2.4.4-5 (string)

product_name : Red Hat OpenShift Service Mesh 2.4 for RHEL 8 (string)

release_date : 2023-10-19T00:00:00Z (string)

}

8 : { »

advisory : RHSA-2023:5952 (string)

cpe : cpe:/a:redhat:service_mesh:2.4::el8 (string)

package : openshift-service-mesh/ratelimit-rhel8:2.4.4-2 (string)

product_name : Red Hat OpenShift Service Mesh 2.4 for RHEL 8 (string)

release_date : 2023-10-19T00:00:00Z (string)

}

9 : { »

advisory : RHSA-2022:2183 (string)

cpe : cpe:/a:redhat:openstack:16.2::el8 (string)

package : rhosp-rhel8-tech-preview/osp-director-operator:1.2.3-2 (string)

product_name : Red Hat OpenStack Platform 16.2 (string)

release_date : 2022-05-11T00:00:00Z (string)

}

]

bugzilla : { »

description : containerd: pulling and extracting crafted container image may result in Unix file permission changes (string)

id : 1982681 (string)

url : https://bugzilla.redhat.com/show_bug.cgi?id=1982681 (string)

}

csaw : false (boolean)

cvss3 : { »

cvss3_base_score : 5.5 (string)

cvss3_scoring_vector : CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L (string)

status : verified (string)

}

cwe : CWE-281 (string)

details : [ »

0 : containerd is a container runtime. A bug was found in containerd versions prior to 1.4.8 and 1.5.4 where pulling and extracting a specially-crafted container image can result in Unix file permission changes for existing files in the host’s filesystem. Changes to file permissions can deny access to the expected owner of the file, widen access to others, or set extended bits like setuid, setgid, and sticky. This bug does not directly allow files to be read, modified, or executed without an additional cooperating process. This bug has been fixed in containerd 1.5.4 and 1.4.8. As a workaround, ensure that users only pull images from trusted sources. Linux security modules (LSMs) like SELinux and AppArmor can limit the files potentially affected by this bug through policies and profiles that prevent containerd from interacting with specific files. (string)

1 : A flaw was found in containerd where pulling and extracting a specially-crafted container image can result in Unix file permission changes for existing files in the host’s filesystem. Changes to file permissions can deny access to the expected owner of the file, widen access to others, or set extended bits like setuid, setgid, and sticky. This bug does not directly allow files to be read, modified, or executed without an additional cooperating process. (string)

]

name : CVE-2021-32760 (string)

package_state : [ »

0 : { »

cpe : cpe:/a:redhat:cert_manager:1 (string)

fix_state : Under investigation (string)

package_name : cert-manager/cert-manager-operator-rhel9 (string)

product_name : cert-manager Operator for Red Hat OpenShift (string)

}

1 : { »

cpe : cpe:/a:redhat:cert_manager:1 (string)

fix_state : Under investigation (string)

package_name : cert-manager/jetstack-cert-manager-rhel9 (string)

product_name : cert-manager Operator for Red Hat OpenShift (string)

}

2 : { »

cpe : cpe:/a:redhat:cost_management:1 (string)

fix_state : Not affected (string)

package_name : costmanagement/costmanagement-metrics-rhel8-operator (string)

product_name : Cost Management Metrics Operator (string)

}

3 : { »

cpe : cpe:/a:redhat:cryostat:2 (string)

fix_state : Not affected (string)

package_name : cryostat-tech-preview/cryostat-rhel8-operator (string)

product_name : Cryostat 2 (string)

}

4 : { »

cpe : cpe:/a:redhat:logging:5 (string)

fix_state : Not affected (string)

package_name : openshift-logging/logging-loki-rhel8 (string)

product_name : Logging Subsystem for Red Hat OpenShift (string)

}

5 : { »

cpe : cpe:/a:redhat:logging:5 (string)

fix_state : Not affected (string)

package_name : openshift-logging/lokistack-gateway-rhel9 (string)

product_name : Logging Subsystem for Red Hat OpenShift (string)

}

6 : { »

cpe : cpe:/a:redhat:logging:5 (string)

fix_state : Not affected (string)

package_name : openshift-logging/opa-openshift-rhel8 (string)

product_name : Logging Subsystem for Red Hat OpenShift (string)

}

7 : { »

cpe : cpe:/a:redhat:rhmt (string)

fix_state : Not affected (string)

package_name : rhmtc/openshift-migration-controller-rhel8 (string)

product_name : Migration Toolkit for Containers (string)

}

8 : { »

cpe : cpe:/a:redhat:rhmt (string)

fix_state : Not affected (string)

package_name : rhmtc/openshift-velero-plugin-rhel8 (string)

product_name : Migration Toolkit for Containers (string)

}

9 : { »

cpe : cpe:/a:redhat:migration_toolkit_virtualization:2 (string)

fix_state : Not affected (string)

package_name : migration-toolkit-virtualization/mtv-controller-rhel9 (string)

product_name : Migration Toolkit for Virtualization (string)

}

10 : { »

cpe : cpe:/a:redhat:migration_toolkit_virtualization:2 (string)

fix_state : Not affected (string)

package_name : migration-toolkit-virtualization/mtv-rhel8-operator (string)

product_name : Migration Toolkit for Virtualization (string)

}

11 : { »

cpe : cpe:/a:redhat:openshift_api_data_protection:1 (string)

fix_state : Not affected (string)

package_name : oadp/oadp-velero-plugin-rhel8 (string)

product_name : OpenShift API for Data Protection (string)

}

12 : { »

cpe : cpe:/a:redhat:serverless:1 (string)

fix_state : Not affected (string)

package_name : openshift-serverless-1/client-kn-rhel8 (string)

product_name : OpenShift Serverless (string)

}

13 : { »

cpe : cpe:/a:redhat:serverless:1 (string)

fix_state : Not affected (string)

package_name : openshift-serverless-1/ingress-rhel8-operator (string)

product_name : OpenShift Serverless (string)

}

14 : { »

cpe : cpe:/a:redhat:serverless:1 (string)

fix_state : Not affected (string)

package_name : openshift-serverless-1-knative-client-plugin-event-sender-rhel8-container (string)

product_name : OpenShift Serverless (string)

}

15 : { »

cpe : cpe:/a:redhat:serverless:1 (string)

fix_state : Not affected (string)

package_name : openshift-serverless-1/serving-queue-rhel8 (string)

product_name : OpenShift Serverless (string)

}

16 : { »

cpe : cpe:/a:redhat:service_mesh:2 (string)

fix_state : Not affected (string)

package_name : openshift-service-mesh/prometheus-rhel8 (string)

product_name : OpenShift Service Mesh 2 (string)

}

17 : { »

cpe : cpe:/a:redhat:red_hat_3scale_amp:2 (string)

fix_state : Affected (string)

package_name : 3scale-operator-container (string)

product_name : Red Hat 3scale API Management Platform 2 (string)

}

18 : { »

cpe : cpe:/a:redhat:acm:2 (string)

fix_state : Not affected (string)

package_name : acm-multicluster-globalhub-agent-container (string)

product_name : Red Hat Advanced Cluster Management for Kubernetes 2 (string)

}

19 : { »

cpe : cpe:/a:redhat:acm:2 (string)

fix_state : Not affected (string)

package_name : containerd (string)

product_name : Red Hat Advanced Cluster Management for Kubernetes 2 (string)

}

20 : { »

cpe : cpe:/a:redhat:acm:2 (string)

fix_state : Not affected (string)

package_name : rhacm2/acm-cluster-proxy-rhel8 (string)

product_name : Red Hat Advanced Cluster Management for Kubernetes 2 (string)

}

21 : { »

cpe : cpe:/a:redhat:acm:2 (string)

fix_state : Not affected (string)

package_name : rhacm2/acm-governance-policy-addon-controller-rhel9 (string)

product_name : Red Hat Advanced Cluster Management for Kubernetes 2 (string)

}

22 : { »

cpe : cpe:/a:redhat:acm:2 (string)

fix_state : Not affected (string)

package_name : rhacm2/acm-governance-policy-framework-addon-rhel8 (string)

product_name : Red Hat Advanced Cluster Management for Kubernetes 2 (string)

}

23 : { »

cpe : cpe:/a:redhat:acm:2 (string)

fix_state : Not affected (string)

package_name : rhacm2/acm-grafana-rhel8 (string)

product_name : Red Hat Advanced Cluster Management for Kubernetes 2 (string)

}

24 : { »

cpe : cpe:/a:redhat:acm:2 (string)

fix_state : Not affected (string)

package_name : rhacm2/acm-prometheus-rhel8 (string)

product_name : Red Hat Advanced Cluster Management for Kubernetes 2 (string)

}

25 : { »

cpe : cpe:/a:redhat:acm:2 (string)

fix_state : Not affected (string)

package_name : rhacm2/acm-search-v2-rhel8 (string)

product_name : Red Hat Advanced Cluster Management for Kubernetes 2 (string)

}

26 : { »

cpe : cpe:/a:redhat:acm:2 (string)

fix_state : Not affected (string)

package_name : rhacm2/acm-volsync-addon-controller-rhel9 (string)

product_name : Red Hat Advanced Cluster Management for Kubernetes 2 (string)

}

27 : { »

cpe : cpe:/a:redhat:acm:2 (string)

fix_state : Not affected (string)

package_name : rhacm2/cert-policy-controller-rhel9 (string)

product_name : Red Hat Advanced Cluster Management for Kubernetes 2 (string)

}

28 : { »

cpe : cpe:/a:redhat:acm:2 (string)

fix_state : Not affected (string)

package_name : rhacm2/cluster-backup-rhel9-operator (string)

product_name : Red Hat Advanced Cluster Management for Kubernetes 2 (string)

}

29 : { »

cpe : cpe:/a:redhat:acm:2 (string)

fix_state : Not affected (string)

package_name : rhacm2/config-policy-controller-rhel9 (string)

product_name : Red Hat Advanced Cluster Management for Kubernetes 2 (string)

}

30 : { »

cpe : cpe:/a:redhat:acm:2 (string)

fix_state : Not affected (string)

package_name : rhacm2/governance-policy-propagator-rhel8 (string)

product_name : Red Hat Advanced Cluster Management for Kubernetes 2 (string)

}

31 : { »

cpe : cpe:/a:redhat:acm:2 (string)

fix_state : Not affected (string)

package_name : rhacm2/governance-policy-spec-sync-rhel8 (string)

product_name : Red Hat Advanced Cluster Management for Kubernetes 2 (string)

}

32 : { »

cpe : cpe:/a:redhat:acm:2 (string)

fix_state : Not affected (string)

package_name : rhacm2/governance-policy-status-sync-rhel8 (string)

product_name : Red Hat Advanced Cluster Management for Kubernetes 2 (string)

}

33 : { »

cpe : cpe:/a:redhat:acm:2 (string)

fix_state : Not affected (string)

package_name : rhacm2/governance-policy-template-sync-rhel8 (string)

product_name : Red Hat Advanced Cluster Management for Kubernetes 2 (string)

}

34 : { »

cpe : cpe:/a:redhat:acm:2 (string)

fix_state : Not affected (string)

package_name : rhacm2/iam-policy-controller-rhel8 (string)

product_name : Red Hat Advanced Cluster Management for Kubernetes 2 (string)

}

35 : { »

cpe : cpe:/a:redhat:acm:2 (string)

fix_state : Not affected (string)

package_name : rhacm2/multiclusterhub-repo-rhel8 (string)

product_name : Red Hat Advanced Cluster Management for Kubernetes 2 (string)

}

36 : { »

cpe : cpe:/a:redhat:acm:2 (string)

fix_state : Not affected (string)

package_name : rhacm2/multiclusterhub-rhel8 (string)

product_name : Red Hat Advanced Cluster Management for Kubernetes 2 (string)

}

37 : { »

cpe : cpe:/a:redhat:acm:2 (string)

fix_state : Not affected (string)

package_name : rhacm2/multicluster-operators-application-rhel8 (string)

product_name : Red Hat Advanced Cluster Management for Kubernetes 2 (string)

}

38 : { »

cpe : cpe:/a:redhat:acm:2 (string)

fix_state : Not affected (string)

package_name : rhacm2/multicluster-operators-channel-rhel8 (string)

product_name : Red Hat Advanced Cluster Management for Kubernetes 2 (string)

}

39 : { »

cpe : cpe:/a:redhat:acm:2 (string)

fix_state : Not affected (string)

package_name : rhacm2/multicluster-operators-subscription-rhel8 (string)

product_name : Red Hat Advanced Cluster Management for Kubernetes 2 (string)

}

40 : { »

cpe : cpe:/a:redhat:acm:2 (string)

fix_state : Not affected (string)

package_name : rhacm2/observatorium-rhel8 (string)

product_name : Red Hat Advanced Cluster Management for Kubernetes 2 (string)

}

41 : { »

cpe : cpe:/a:redhat:acm:2 (string)

fix_state : Not affected (string)

package_name : rhacm2/prometheus-rhel8 (string)

product_name : Red Hat Advanced Cluster Management for Kubernetes 2 (string)

}

42 : { »

cpe : cpe:/a:redhat:acm:2 (string)

fix_state : Not affected (string)

package_name : rhacm2/rbac-query-proxy-rhel8 (string)

product_name : Red Hat Advanced Cluster Management for Kubernetes 2 (string)

}

43 : { »

cpe : cpe:/a:redhat:acm:2 (string)

fix_state : Not affected (string)

package_name : rhacm2/search-collector-rhel9 (string)

product_name : Red Hat Advanced Cluster Management for Kubernetes 2 (string)

}

44 : { »

cpe : cpe:/a:redhat:acm:2 (string)

fix_state : Not affected (string)

package_name : rhacm2/thanos-receive-controller-rhel8 (string)

product_name : Red Hat Advanced Cluster Management for Kubernetes 2 (string)

}

45 : { »

cpe : cpe:/a:redhat:acm:2 (string)

fix_state : Not affected (string)

package_name : rhacm2/thanos-rhel7 (string)

product_name : Red Hat Advanced Cluster Management for Kubernetes 2 (string)

}

46 : { »

cpe : cpe:/a:redhat:advanced_cluster_security:3 (string)

fix_state : Not affected (string)

package_name : advanced-cluster-security/rhacs-main-rhel8 (string)

product_name : Red Hat Advanced Cluster Security 3 (string)

}

47 : { »

cpe : cpe:/a:redhat:advanced_cluster_security:3 (string)

fix_state : Not affected (string)

package_name : advanced-cluster-security/rhacs-scanner-rhel8 (string)

product_name : Red Hat Advanced Cluster Security 3 (string)

}

48 : { »

cpe : cpe:/a:redhat:advanced_cluster_security:4 (string)

fix_state : Not affected (string)

package_name : advanced-cluster-security/rhacs-main-rhel8 (string)

product_name : Red Hat Advanced Cluster Security 4 (string)

}

49 : { »

cpe : cpe:/a:redhat:advanced_cluster_security:4 (string)

fix_state : Not affected (string)

package_name : advanced-cluster-security/rhacs-scanner-rhel8 (string)

product_name : Red Hat Advanced Cluster Security 4 (string)

}

50 : { »

cpe : cpe:/a:redhat:openshift:3.11 (string)

fix_state : Not affected (string)

package_name : atomic-openshift (string)

product_name : Red Hat OpenShift Container Platform 3.11 (string)

}

51 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/cnf-tests-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

52 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/dpu-network-rhel8-operator (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

53 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/kubernetes-nmstate-rhel8-operator (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

54 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/metallb-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

55 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/metallb-rhel8-operator (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

56 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/oc-mirror-plugin-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

57 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-agent-installer-api-server-rhel9 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

58 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-agent-installer-csr-approver-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

59 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-agent-installer-node-agent-rhel9 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

60 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-alibaba-cloud-controller-manager-rhel9 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

61 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-alibaba-cloud-csi-driver-container-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

62 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-aws-cluster-api-controllers-rhel9 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

63 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-aws-ebs-csi-driver-rhel9 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

64 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-aws-efs-csi-driver-container-rhel9 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

65 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-azure-cluster-api-controllers-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

66 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-azure-disk-csi-driver-rhel9 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

67 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-azure-file-csi-driver-rhel9 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

68 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-cluster-capacity (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

69 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-cluster-capi-operator-container-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

70 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-cluster-capi-rhel8-operator (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

71 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-cluster-ingress-operator (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

72 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-cluster-kube-cluster-api-rhel8-operator (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

73 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-cluster-monitoring-operator (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

74 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-cluster-network-operator (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

75 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-cluster-node-tuning-rhel9-operator (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

76 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-cluster-platform-operators-manager-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

77 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-cluster-policy-controller-rhel9 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

78 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-cluster-storage-operator (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

79 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-cluster-version-operator (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

80 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-console (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

81 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-container-networking-plugins-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

82 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-csi-driver-manila-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

83 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-csi-driver-nfs-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

84 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-csi-driver-shared-resource-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

85 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-csi-external-provisioner (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

86 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-csi-external-provisioner-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

87 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-csi-snapshot-controller (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

88 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-csi-snapshot-controller-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

89 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-docker-builder (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

90 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-docker-registry (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

91 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-gcp-cloud-controller-manager-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

92 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-gcp-filestore-csi-driver-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

93 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-gcp-pd-csi-driver-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

94 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-grafana (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

95 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-hypershift-rhel9 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

96 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-ibm-vpc-block-csi-driver-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

97 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-installer (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

98 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-local-storage-operator (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

99 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-local-storage-static-provisioner (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

100 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-machine-api-provider-openstack-rhel9 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

101 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-machine-config-operator (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

102 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-metering-ansible-operator (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

103 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-metering-helm-container-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

104 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-multus-admission-controller-rhel9 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

105 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-multus-cni (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

106 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-multus-networkpolicy-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

107 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-network-interface-bond-cni-rhel9 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

108 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-node-feature-discovery (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

109 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-node-problem-detector-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

110 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-oauth-apiserver-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

111 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-olm-rukpak-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

112 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-openshift-apiserver-rhel9 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

113 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-openshift-controller-manager-rhel9 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

114 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-operator-marketplace (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

115 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-operator-registry-rhel9 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

116 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-operator-sdk-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

117 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-pod (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

118 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-powervs-block-csi-driver-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

119 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-prometheus (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

120 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-prometheus-rhel9-operator (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

121 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-prom-label-proxy (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

122 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-ptp-operator (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

123 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-sdn-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

124 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-sriov-network-webhook (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

125 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-tests (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

126 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-thanos-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

127 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-tools-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

128 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-vsphere-cloud-controller-manager-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

129 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-vsphere-cluster-api-controllers-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

130 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ose-vsphere-csi-driver-syncer-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

131 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/special-resource-rhel8-operator (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

132 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/topology-aware-lifecycle-manager-rhel8-operator (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

133 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4-wincw/windows-machine-config-rhel8-operator (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

134 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift4/ztp-site-generate-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

135 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift-security-profiles-operator-container (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

136 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : openshift-tech-preview/metallb-rhel8 (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

137 : { »

cpe : cpe:/a:redhat:openshift:4 (string)

fix_state : Not affected (string)

package_name : redhat/redhat-operator-index (string)

product_name : Red Hat OpenShift Container Platform 4 (string)

}

138 : { »

cpe : cpe:/a:redhat:assisted_installer: (string)

fix_state : Not affected (string)

package_name : rhai-tech-preview/assisted-installer-agent-rhel8 (string)

product_name : Red Hat OpenShift Container Platform Assisted Installer (string)

}

139 : { »

cpe : cpe:/a:redhat:assisted_installer: (string)

fix_state : Not affected (string)

package_name : rhai-tech-preview/assisted-installer-rhel8 (string)

product_name : Red Hat OpenShift Container Platform Assisted Installer (string)

}

140 : { »

cpe : cpe:/a:redhat:openshift_container_storage:4 (string)

fix_state : Not affected (string)

package_name : ocs4/cephcsi-rhel8 (string)

product_name : Red Hat Openshift Container Storage 4 (string)

}

141 : { »

cpe : cpe:/a:redhat:openshift_container_storage:4 (string)

fix_state : Not affected (string)

package_name : ocs4/mcg-rhel8-operator (string)

product_name : Red Hat Openshift Container Storage 4 (string)

}

142 : { »

cpe : cpe:/a:redhat:openshift_container_storage:4 (string)

fix_state : Not affected (string)

package_name : ocs4/ocs-rhel8-operator (string)

product_name : Red Hat Openshift Container Storage 4 (string)

}

143 : { »

cpe : cpe:/a:redhat:openshift_container_storage:4 (string)

fix_state : Not affected (string)

package_name : ocs4/rook-ceph-rhel8-operator (string)

product_name : Red Hat Openshift Container Storage 4 (string)

}

144 : { »

cpe : cpe:/a:redhat:openshift_data_foundation:4 (string)

fix_state : Not affected (string)

package_name : odf4/cephcsi-rhel9 (string)

product_name : Red Hat Openshift Data Foundation 4 (string)

}

145 : { »

cpe : cpe:/a:redhat:openshift_data_foundation:4 (string)

fix_state : Not affected (string)

package_name : odf4/mcg-rhel9-operator (string)

product_name : Red Hat Openshift Data Foundation 4 (string)

}

146 : { »

cpe : cpe:/a:redhat:openshift_data_foundation:4 (string)

fix_state : Not affected (string)

package_name : odf4/ocs-rhel9-operator (string)

product_name : Red Hat Openshift Data Foundation 4 (string)

}

147 : { »

cpe : cpe:/a:redhat:openshift_data_foundation:4 (string)

fix_state : Not affected (string)

package_name : odf4/odf-csi-addons-sidecar-rhel9 (string)

product_name : Red Hat Openshift Data Foundation 4 (string)

}

148 : { »

cpe : cpe:/a:redhat:openshift_data_foundation:4 (string)

fix_state : Not affected (string)

package_name : odf4/odf-lvm-rhel8-operator (string)

product_name : Red Hat Openshift Data Foundation 4 (string)

}

149 : { »

cpe : cpe:/a:redhat:openshift_data_foundation:4 (string)

fix_state : Not affected (string)

package_name : odf4/odf-multicluster-rhel9-operator (string)

product_name : Red Hat Openshift Data Foundation 4 (string)

}

150 : { »

cpe : cpe:/a:redhat:openshift_data_foundation:4 (string)

fix_state : Not affected (string)

package_name : odf4/odf-rhel8-operator (string)

product_name : Red Hat Openshift Data Foundation 4 (string)

}

151 : { »

cpe : cpe:/a:redhat:openshift_data_foundation:4 (string)

fix_state : Not affected (string)

package_name : odf4/odr-rhel8-operator (string)

product_name : Red Hat Openshift Data Foundation 4 (string)

}

152 : { »

cpe : cpe:/a:redhat:openshift_data_foundation:4 (string)

fix_state : Not affected (string)

package_name : odf4/rook-ceph-rhel8-operator (string)

product_name : Red Hat Openshift Data Foundation 4 (string)

}

153 : { »

cpe : cpe:/a:redhat:openshift_data_science (string)

fix_state : Not affected (string)

package_name : rhods/odh-ml-pipelines-cache-rhel8 (string)

product_name : Red Hat OpenShift Data Science (RHODS) (string)

}

154 : { »

cpe : cpe:/a:redhat:openshift_data_science (string)

fix_state : Not affected (string)

package_name : rhods/odh-model-controller-rhel8 (string)

product_name : Red Hat OpenShift Data Science (RHODS) (string)

}

155 : { »

cpe : cpe:/a:redhat:openshift_data_science (string)

fix_state : Not affected (string)

package_name : rhods/odh-modelmesh-serving-controller-rhel8 (string)

product_name : Red Hat OpenShift Data Science (RHODS) (string)

}

156 : { »

cpe : cpe:/a:redhat:openshift_data_science (string)

fix_state : Affected (string)

package_name : rhods/odh-operator-base-rhel8 (string)

product_name : Red Hat OpenShift Data Science (RHODS) (string)

}

157 : { »

cpe : cpe:/a:redhat:openshift_devspaces:3: (string)

fix_state : Not affected (string)

package_name : devspaces/traefik-rhel8 (string)

product_name : Red Hat OpenShift Dev Spaces (string)

}

158 : { »

cpe : cpe:/a:redhat:openshift_distributed_tracing:2 (string)

fix_state : Not affected (string)

package_name : rhosdt/opentelemetry-rhel8-operator (string)

product_name : Red Hat OpenShift distributed tracing 2 (string)

}

159 : { »

cpe : cpe:/a:redhat:openshift_gitops:1 (string)

fix_state : Not affected (string)

package_name : openshift-gitops-1/argocd-rhel8 (string)

product_name : Red Hat OpenShift GitOps (string)

}

160 : { »

cpe : cpe:/a:redhat:openshift_gitops:1 (string)

fix_state : Not affected (string)

package_name : openshift-gitops-1/gitops-rhel8 (string)

product_name : Red Hat OpenShift GitOps (string)

}

161 : { »

cpe : cpe:/a:redhat:openshift_gitops:1 (string)

fix_state : Not affected (string)

package_name : openshift-gitops-1/gitops-rhel8-operator (string)

product_name : Red Hat OpenShift GitOps (string)

}

162 : { »

cpe : cpe:/a:redhat:openshift_gitops:1 (string)

fix_state : Not affected (string)

package_name : openshift-gitops-1/kam-delivery-rhel8 (string)

product_name : Red Hat OpenShift GitOps (string)

}

163 : { »

cpe : cpe:/a:redhat:openshift_sandboxed_containers:1 (string)

fix_state : Not affected (string)

package_name : openshift-sandboxed-containers/osc-cloud-api-adaptor-rhel9 (string)

product_name : Red Hat Openshift Sandboxed Containers (string)

}

164 : { »

cpe : cpe:/a:redhat:openshift_sandboxed_containers:1 (string)

fix_state : Not affected (string)

package_name : openshift-sandboxed-containers/osc-rhel8-operator (string)

product_name : Red Hat Openshift Sandboxed Containers (string)

}

165 : { »

cpe : cpe:/a:redhat:container_native_virtualization:4 (string)

fix_state : Not affected (string)

package_name : container-native-virtualization/cluster-network-addons-operator (string)

product_name : Red Hat OpenShift Virtualization 4 (string)

}

166 : { »

cpe : cpe:/a:redhat:container_native_virtualization:4 (string)

fix_state : Not affected (string)

package_name : container-native-virtualization/cluster-network-addons-operator-rhel9 (string)

product_name : Red Hat OpenShift Virtualization 4 (string)

}

167 : { »

cpe : cpe:/a:redhat:container_native_virtualization:4 (string)

fix_state : Not affected (string)

package_name : container-native-virtualization/kubernetes-nmstate-handler-rhel8 (string)

product_name : Red Hat OpenShift Virtualization 4 (string)

}

168 : { »

cpe : cpe:/a:redhat:container_native_virtualization:4 (string)

fix_state : Not affected (string)

package_name : container-native-virtualization/multus-dynamic-networks-rhel9 (string)

product_name : Red Hat OpenShift Virtualization 4 (string)

}

169 : { »

cpe : cpe:/a:redhat:openstack:16.2 (string)

fix_state : Affected (string)

package_name : osp-director-provisioner-container (string)

product_name : Red Hat OpenStack Platform 16.2 (string)

}

170 : { »

cpe : cpe:/a:redhat:openstack:16.2 (string)

fix_state : Will not fix (string)

package_name : rhosp-rhel8-tech-preview/osp-director-downloader (string)

product_name : Red Hat OpenStack Platform 16.2 (string)

}

171 : { »

cpe : cpe:/a:redhat:quay:3 (string)

fix_state : Not affected (string)

package_name : quay/quay-builder-rhel8 (string)

product_name : Red Hat Quay 3 (string)

}

172 : { »

cpe : cpe:/a:redhat:quay:3 (string)

fix_state : Not affected (string)

package_name : quay/quay-operator-rhel8 (string)

product_name : Red Hat Quay 3 (string)

}

]

public_date : 2021-07-19T00:00:00Z (string)

references : [ »

0 : https://www.cve.org/CVERecord?id=CVE-2021-32760 https://nvd.nist.gov/vuln/detail/CVE-2021-32760 (string)

]

threat_severity : Moderate (string)

}

Metrics

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction Required

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Exploitation none

Automatable no

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object