A vulnerability was found in the search-api container in Red Hat Advanced Cluster Management for Kubernetes when a query in the search filter gets parsed by the backend. This flaw allows an attacker to craft specific strings containing special characters that lead to crashing the pod and affects system availability while restarting.
History

Sun, 08 Sep 2024 18:45:00 +0000

Type Values Removed Values Added
First Time appeared Redhat acm
CPEs cpe:/a:redhat:acm:2.4::el8
cpe:/a:redhat:acm:2.5::el8
cpe:/a:redhat:acm:2.6::el8
Vendors & Products Redhat acm

Mon, 19 Aug 2024 22:15:00 +0000

Type Values Removed Values Added
CPEs cpe:/a:redhat:acm:2.4::el8
cpe:/a:redhat:acm:2.5::el8
cpe:/a:redhat:acm:2.6::el8
Vendors & Products Redhat acm

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2022-09-01T19:56:03

Updated: 2024-08-03T00:32:09.559Z

Reserved: 2022-06-28T00:00:00

Link: CVE-2022-2238

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-09-01T21:15:09.233

Modified: 2024-11-21T07:00:36.003

Link: CVE-2022-2238

cve-icon Redhat

Severity : Moderate

Publid Date: 2022-06-28T00:00:00Z

Links: CVE-2022-2238 - Bugzilla