{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-45296", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2024-08-26T18:25:35.442Z", "datePublished": "2024-09-09T19:07:40.313Z", "dateUpdated": "2025-01-24T20:03:07.723Z"}, "containers": {"cna": {"title": "path-to-regexp outputs backtracking regular expressions", "problemTypes": [{"descriptions": [{"cweId": "CWE-1333", "lang": "en", "description": "CWE-1333: Inefficient Regular Expression Complexity", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}}], "references": [{"name": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"}, {"name": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f", "tags": ["x_refsource_MISC"], "url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"}, {"name": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6", "tags": ["x_refsource_MISC"], "url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"}], "affected": [{"vendor": "pillarjs", "product": "path-to-regexp", "versions": [{"version": "< 0.1.10", "status": "affected"}, {"version": ">= 0.2.0, < 8.0.0", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-09-09T19:07:40.313Z"}, "descriptions": [{"lang": "en", "value": "path-to-regexp turns path strings into a regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a DoS. The bad regular expression is generated any time you have two parameters within a single segment, separated by something that is not a period (.). For users of 0.1, upgrade to 0.1.10. All other users should upgrade to 8.0.0."}], "source": {"advisory": "GHSA-9wv6-86v2-598j", "discovery": "UNKNOWN"}}, "adp": [{"affected": [{"vendor": "pillarjs", "product": "path-to-regexp", "cpes": ["cpe:2.3:a:pillarjs:path-to-regexp:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "0.1.0", "versionType": "custom"}, {"version": "0.2.0", "status": "affected", "lessThan": "8.0.0", "versionType": "custom"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-09-09T19:32:57.513942Z", "id": "CVE-2024-45296", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-09T19:38:12.783Z"}}, {"title": "CVE Program Container", "references": [{"url": "https://security.netapp.com/advisory/ntap-20250124-0001/"}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2025-01-24T20:03:07.723Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-45296", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-09-09T19:32:57.513942Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:pillarjs:path-to-regexp:*:*:*:*:*:*:*:*"], "vendor": "pillarjs", "product": "path-to-regexp", "versions": [{"status": "affected", "version": "0", "lessThan": "0.1.0", "versionType": "custom"}, {"status": "affected", "version": "0.2.0", "lessThan": "8.0.0", "versionType": "custom"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-09T19:38:02.181Z"}}], "cna": {"title": "path-to-regexp outputs backtracking regular expressions", "source": {"advisory": "GHSA-9wv6-86v2-598j", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}}], "affected": [{"vendor": "pillarjs", "product": "path-to-regexp", "versions": [{"status": "affected", "version": "< 0.1.10"}, {"status": "affected", "version": ">= 0.2.0, < 8.0.0"}]}], "references": [{"url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j", "name": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f", "name": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f", "tags": ["x_refsource_MISC"]}, {"url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6", "name": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "path-to-regexp turns path strings into a regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a DoS. The bad regular expression is generated any time you have two parameters within a single segment, separated by something that is not a period (.). For users of 0.1, upgrade to 0.1.10. All other users should upgrade to 8.0.0."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-1333", "description": "CWE-1333: Inefficient Regular Expression Complexity"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-09-09T19:07:40.313Z"}}}, "cveMetadata": {"cveId": "CVE-2024-45296", "state": "PUBLISHED", "dateUpdated": "2024-09-09T19:38:12.783Z", "dateReserved": "2024-08-26T18:25:35.442Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2024-09-09T19:07:40.313Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.1"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "path-to-regexp turns path strings into a regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a DoS. The bad regular expression is generated any time you have two parameters within a single segment, separated by something that is not a period (.). For users of 0.1, upgrade to 0.1.10. All other users should upgrade to 8.0.0."}, {"lang": "es", "value": "path-to-regexp convierte cadenas de ruta en expresiones regulares. En ciertos casos, path-to-regexp generar\u00e1 una expresi\u00f3n regular que puede explotarse para generar un rendimiento deficiente. Debido a que JavaScript es de un solo subproceso y la coincidencia de expresiones regulares se ejecuta en el subproceso principal, un rendimiento deficiente bloquear\u00e1 el bucle de eventos y provocar\u00e1 un ataque de denegaci\u00f3n de servicio (DoS). La expresi\u00f3n regular incorrecta se genera cada vez que hay dos par\u00e1metros dentro de un solo segmento, separados por algo que no sea un punto (.). Para los usuarios de la versi\u00f3n 0.1, actualice a la versi\u00f3n 0.1.10. Todos los dem\u00e1s usuarios deben actualizar a la versi\u00f3n 8.0.0."}], "id": "CVE-2024-45296", "lastModified": "2025-01-24T20:15:32.680", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2024-09-09T19:15:13.330", "references": [{"source": "security-advisories@github.com", "url": "https://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f"}, {"source": "security-advisories@github.com", "url": "https://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6"}, {"source": "security-advisories@github.com", "url": "https://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://security.netapp.com/advisory/ntap-20250124-0001/"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-1333"}], "source": "security-advisories@github.com", "type": "Secondary"}]}

{"affected_release": [{"advisory": "RHSA-2025:1249", "cpe": "cpe:/o:redhat:discovery:1.0::el9", "package": "discovery/discovery-server-rhel9:1.12.0-1", "product_name": "Discovery 1 for RHEL 9", "release_date": "2025-02-10T00:00:00Z"}, {"advisory": "RHSA-2025:1249", "cpe": "cpe:/o:redhat:discovery:1.0::el9", "package": "discovery/discovery-ui-rhel9:1.12.0-1", "product_name": "Discovery 1 for RHEL 9", "release_date": "2025-02-10T00:00:00Z"}, {"advisory": "RHSA-2024:11023", "cpe": "cpe:/a:redhat:rhboac_hawtio:4.0.0", "package": "path-to-regexp", "product_name": "HawtIO 4.0.0 for Red Hat build of Apache Camel 4", "release_date": "2024-12-12T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el8", "package": "multicluster-engine/assisted-image-service-rhel8:v2.6.4-4", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 8", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el8", "package": "multicluster-engine/assisted-installer-agent-rhel8:v2.6.4-7", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 8", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el8", "package": "multicluster-engine/assisted-installer-controller-rhel8:v2.6.4-6", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 8", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el8", "package": "multicluster-engine/assisted-installer-rhel8:v2.6.4-7", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 8", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el8", "package": "multicluster-engine/assisted-service-8-rhel8:v2.6.4-11", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 8", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/addon-manager-rhel9:v2.6.4-14", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/assisted-service-9-rhel9:v2.6.4-11", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/backplane-rhel9-operator:v2.6.4-21", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/cluster-api-provider-agent-rhel9:v2.6.4-6", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/cluster-api-provider-kubevirt-rhel9:v2.6.4-4", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/cluster-api-rhel9:v2.6.4-4", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/clusterclaims-controller-rhel9:v2.6.4-6", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/cluster-curator-controller-rhel9:v2.6.4-6", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/cluster-image-set-controller-rhel9:v2.6.4-6", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/clusterlifecycle-state-metrics-rhel9:v2.6.4-7", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/cluster-proxy-addon-rhel9:v2.6.4-6", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/cluster-proxy-rhel9:v2.6.4-5", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/console-mce-rhel9:v2.6.4-19", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/discovery-rhel9:v2.6.4-14", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/hive-rhel9:v2.6.4-6", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/hypershift-addon-rhel9-operator:v2.6.4-6", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/hypershift-cli-rhel9:v2.6.4-24", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/hypershift-rhel9-operator:v2.6.4-23", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/image-based-install-rhel9:v2.6.4-65", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/kube-rbac-proxy-mce-rhel9:v2.6.4-3", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/managedcluster-import-controller-rhel9:v2.6.4-8", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/managed-serviceaccount-rhel9:v2.6.4-14", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/mce-operator-bundle:v2.6.4-47", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/multicloud-manager-rhel9:v2.6.4-6", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/must-gather-rhel9:v2.6.4-18", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/placement-rhel9:v2.6.4-14", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/provider-credential-controller-rhel9:v2.6.4-6", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/registration-operator-rhel9:v2.6.4-14", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/registration-rhel9:v2.6.4-14", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:11293", "cpe": "cpe:/a:redhat:multicluster_engine:2.6::el9", "package": "multicluster-engine/work-rhel9:v2.6.4-14", "product_name": "multicluster engine for Kubernetes 2.6 for RHEL 9", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el8", "package": "multicluster-engine/assisted-service-8-rhel8:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 8", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/addon-manager-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/assisted-image-service-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/assisted-installer-agent-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/assisted-installer-controller-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/assisted-installer-rhel9:v2.7.2-2", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/assisted-service-9-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/backplane-rhel9-operator:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/cluster-api-provider-agent-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/cluster-api-provider-kubevirt-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/cluster-api-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/clusterclaims-controller-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/cluster-curator-controller-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/cluster-image-set-controller-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/clusterlifecycle-state-metrics-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/cluster-proxy-addon-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/cluster-proxy-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/console-mce-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/discovery-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/hive-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/hypershift-addon-rhel9-operator:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/hypershift-cli-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/hypershift-rhel9-operator:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/image-based-install-rhel9:v2.7.2-3", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/kube-rbac-proxy-mce-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/managedcluster-import-controller-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/managed-serviceaccount-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/mce-operator-bundle:v2.7.2-3", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/multicloud-manager-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/must-gather-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/placement-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/provider-credential-controller-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/registration-operator-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/registration-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10857", "cpe": "cpe:/a:redhat:multicluster_engine:2.7::el9", "package": "multicluster-engine/work-rhel9:v2.7.2-1", "product_name": "multicluster engine for Kubernetes 2.7 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:8014", "cpe": "cpe:/a:redhat:network_observ_optr:1.7.0::el9", "package": "network-observability/network-observability-cli-rhel9:v1.7.0-67", "product_name": "NETWORK-OBSERVABILITY-1.7.0-RHEL-9", "release_date": "2024-10-22T00:00:00Z"}, {"advisory": "RHSA-2024:8014", "cpe": "cpe:/a:redhat:network_observ_optr:1.7.0::el9", "package": "network-observability/network-observability-console-plugin-rhel9:v1.7.0-67", "product_name": "NETWORK-OBSERVABILITY-1.7.0-RHEL-9", "release_date": "2024-10-22T00:00:00Z"}, {"advisory": "RHSA-2024:8014", "cpe": "cpe:/a:redhat:network_observ_optr:1.7.0::el9", "package": "network-observability/network-observability-ebpf-agent-rhel9:v1.7.0-67", "product_name": "NETWORK-OBSERVABILITY-1.7.0-RHEL-9", "release_date": "2024-10-22T00:00:00Z"}, {"advisory": "RHSA-2024:8014", "cpe": "cpe:/a:redhat:network_observ_optr:1.7.0::el9", "package": "network-observability/network-observability-flowlogs-pipeline-rhel9:v1.7.0-67", "product_name": "NETWORK-OBSERVABILITY-1.7.0-RHEL-9", "release_date": "2024-10-22T00:00:00Z"}, {"advisory": "RHSA-2024:8014", "cpe": "cpe:/a:redhat:network_observ_optr:1.7.0::el9", "package": "network-observability/network-observability-operator-bundle:1.7.0-86", "product_name": "NETWORK-OBSERVABILITY-1.7.0-RHEL-9", "release_date": "2024-10-22T00:00:00Z"}, {"advisory": "RHSA-2024:8014", "cpe": "cpe:/a:redhat:network_observ_optr:1.7.0::el9", "package": "network-observability/network-observability-rhel9-operator:v1.7.0-67", "product_name": "NETWORK-OBSERVABILITY-1.7.0-RHEL-9", "release_date": "2024-10-22T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/acm-cluster-permission-rhel9:v2.11.4-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/acm-governance-policy-addon-controller-rhel9:v2.11.4-12", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/acm-governance-policy-framework-addon-rhel9:v2.11.4-13", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/acm-grafana-rhel9:v2.11.4-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/acm-must-gather-rhel9:v2.11.4-12", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/acm-operator-bundle:v2.11.4-47", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/acm-prometheus-config-reloader-rhel9:v2.11.4-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/acm-prometheus-rhel9:v2.11.4-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/acm-search-indexer-rhel9:v2.11.4-10", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/acm-search-v2-api-rhel9:v2.11.4-12", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/acm-search-v2-rhel9:v2.11.4-11", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/acm-volsync-addon-controller-rhel9:v2.11.4-22", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/cert-policy-controller-rhel9:v2.11.4-12", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/cluster-backup-rhel9-operator:v2.11.4-25", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/config-policy-controller-rhel9:v2.11.4-15", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/console-rhel9:v2.11.4-17", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/endpoint-monitoring-rhel9-operator:v2.11.4-6", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/governance-policy-propagator-rhel9:v2.11.4-13", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/grafana-dashboard-loader-rhel9:v2.11.4-6", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/insights-client-rhel9:v2.11.4-10", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/insights-metrics-rhel9:v2.11.4-11", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/klusterlet-addon-controller-rhel9:v2.11.4-6", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/kube-rbac-proxy-rhel9:v2.11.4-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/kube-state-metrics-rhel9:v2.11.4-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/memcached-exporter-rhel9:v2.11.4-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/memcached-rhel9:v2.11.4-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/metrics-collector-rhel9:v2.11.4-6", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/multicloud-integrations-rhel9:v2.11.4-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/multiclusterhub-rhel9:v2.11.4-16", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/multicluster-observability-rhel9-operator:v2.11.4-6", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/multicluster-operators-application-rhel9:v2.11.4-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/multicluster-operators-channel-rhel9:v2.11.4-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/multicluster-operators-subscription-rhel9:v2.11.4-5", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/node-exporter-rhel9:v2.11.4-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/observatorium-rhel9:v2.11.4-5", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/observatorium-rhel9-operator:v2.11.4-6", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/prometheus-alertmanager-rhel9:v2.11.4-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/prometheus-rhel9:v2.11.4-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/rbac-query-proxy-rhel9:v2.11.4-6", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/search-collector-rhel9:v2.11.4-10", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/submariner-addon-rhel9:v2.11.4-17", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/thanos-receive-controller-rhel9:v2.11.4-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:11381", "cpe": "cpe:/a:redhat:acm:2.11::el9", "package": "rhacm2/thanos-rhel9:v2.11.4-5", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.11 for RHEL 9", "release_date": "2024-12-18T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-cli-rhel9:v2.12.1-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-cluster-permission-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-governance-policy-addon-controller-rhel9:v2.12.1-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-governance-policy-framework-addon-rhel9:v2.12.1-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-grafana-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-multicluster-observability-addon-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-must-gather-rhel9:v2.12.1-5", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-operator-bundle:v2.12.1-10", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-prometheus-config-reloader-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-prometheus-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-search-indexer-rhel9:v2.12.1-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-search-v2-api-rhel9:v2.12.1-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-search-v2-rhel9:v2.12.1-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-siteconfig-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/acm-volsync-addon-controller-rhel9:v2.12.1-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/cert-policy-controller-rhel9:v2.12.1-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/cluster-backup-rhel9-operator:v2.12.1-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/config-policy-controller-rhel9:v2.12.1-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/console-rhel9:v2.12.1-8", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/endpoint-monitoring-rhel9-operator:v2.12.1-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/governance-policy-propagator-rhel9:v2.12.1-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/grafana-dashboard-loader-rhel9:v2.12.1-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/insights-client-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/insights-metrics-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/klusterlet-addon-controller-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/kube-rbac-proxy-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/kube-state-metrics-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/memcached-exporter-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/memcached-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/metrics-collector-rhel9:v2.12.1-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/multicloud-integrations-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/multiclusterhub-rhel9:v2.12.1-4", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/multicluster-observability-rhel9-operator:v2.12.1-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/multicluster-operators-application-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/multicluster-operators-channel-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/multicluster-operators-subscription-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/node-exporter-rhel9:v2.12.1-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/observatorium-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/observatorium-rhel9-operator:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/prometheus-alertmanager-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/prometheus-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/rbac-query-proxy-rhel9:v2.12.1-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/search-collector-rhel9:v2.12.1-3", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/submariner-addon-rhel9:v2.12.1-5", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/thanos-receive-controller-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10865", "cpe": "cpe:/a:redhat:acm:2.12::el9", "package": "rhacm2/thanos-rhel9:v2.12.1-2", "product_name": "Red Hat Advanced Cluster Management for Kubernetes 2.12 for RHEL 9", "release_date": "2024-12-05T00:00:00Z"}, {"advisory": "RHSA-2024:10762", "cpe": "cpe:/a:redhat:ansible_automation_platform:2.4::el8", "package": "automation-controller-0:4.5.13-1.el8ap", "product_name": "Red Hat Ansible Automation Platform 2.4 for RHEL 8", "release_date": "2024-12-03T00:00:00Z"}, {"advisory": "RHSA-2024:10762", "cpe": "cpe:/a:redhat:ansible_automation_platform:2.4::el9", "package": "automation-controller-0:4.5.13-1.el9ap", "product_name": "Red Hat Ansible Automation Platform 2.4 for RHEL 9", "release_date": "2024-12-03T00:00:00Z"}, {"advisory": "RHSA-2024:10906", "cpe": "cpe:/a:redhat:rhmt:1.8::el8", "package": "rhmtc/openshift-migration-ui-rhel8:v1.8.5-7", "product_name": "Red Hat Migration Toolkit for Containers 1.8", "release_date": "2024-12-10T00:00:00Z"}, {"advisory": "RHSA-2024:7599", "cpe": "cpe:/a:redhat:openshift:4.16::el9", "package": "openshift4/ose-monitoring-plugin-rhel9:v4.16.0-202410021704.p0.g6a049e3.assembly.stream.el9", "product_name": "Red Hat OpenShift Container Platform 4.16", "release_date": "2024-10-09T00:00:00Z"}, {"advisory": "RHSA-2024:7922", "cpe": "cpe:/a:redhat:openshift:4.17::el9", "package": "openshift4/ose-monitoring-plugin-rhel9:v4.17.0-202410091535.p0.gc7bc7fc.assembly.stream.el9", "product_name": "Red Hat OpenShift Container Platform 4.17", "release_date": "2024-10-16T00:00:00Z"}, {"advisory": "RHSA-2025:0875", "cpe": "cpe:/a:redhat:openshift:4.17::el9", "package": "openshift4/nmstate-console-plugin-rhel9:v4.17.0-202501301204.p0.gcffdc60.assembly.stream.el9", "product_name": "Red Hat OpenShift Container Platform 4.17", "release_date": "2025-02-05T00:00:00Z"}, {"advisory": "RHSA-2024:10236", "cpe": "cpe:/a:redhat:openshift_devspaces:3::el8", "package": "devspaces/dashboard-rhel8:3.17-25", "product_name": "Red Hat OpenShift Dev Spaces 3 Containers", "release_date": "2024-11-25T00:00:00Z"}, {"advisory": "RHSA-2024:8581", "cpe": "cpe:/a:redhat:openshift_gitops:1.13::el8", "package": "openshift-gitops-1/argocd-rhel8:v1.13.2-4", "product_name": "Red Hat OpenShift GitOps 1.13", "release_date": "2024-10-29T00:00:00Z"}, {"advisory": "RHSA-2024:8581", "cpe": "cpe:/a:redhat:openshift_gitops:1.13::el8", "package": "openshift-gitops-1/argo-rollouts-rhel8:v1.13.2-4", "product_name": "Red Hat OpenShift GitOps 1.13", "release_date": "2024-10-29T00:00:00Z"}, {"advisory": "RHSA-2024:8581", "cpe": "cpe:/a:redhat:openshift_gitops:1.13::el8", "package": "openshift-gitops-1/console-plugin-rhel8:v1.13.2-4", "product_name": "Red Hat OpenShift GitOps 1.13", "release_date": "2024-10-29T00:00:00Z"}, {"advisory": "RHSA-2024:8581", "cpe": "cpe:/a:redhat:openshift_gitops:1.13::el8", "package": "openshift-gitops-1/dex-rhel8:v1.13.2-4", "product_name": "Red Hat OpenShift GitOps 1.13", "release_date": "2024-10-29T00:00:00Z"}, {"advisory": "RHSA-2024:8581", "cpe": "cpe:/a:redhat:openshift_gitops:1.13::el8", "package": "openshift-gitops-1/gitops-operator-bundle:v1.13.2-4", "product_name": "Red Hat OpenShift GitOps 1.13", "release_date": "2024-10-29T00:00:00Z"}, {"advisory": "RHSA-2024:8581", "cpe": "cpe:/a:redhat:openshift_gitops:1.13::el8", "package": "openshift-gitops-1/gitops-rhel8:v1.13.2-4", "product_name": "Red Hat OpenShift GitOps 1.13", "release_date": "2024-10-29T00:00:00Z"}, {"advisory": "RHSA-2024:8581", "cpe": "cpe:/a:redhat:openshift_gitops:1.13::el8", "package": "openshift-gitops-1/gitops-rhel8-operator:v1.13.2-4", "product_name": "Red Hat OpenShift GitOps 1.13", "release_date": "2024-10-29T00:00:00Z"}, {"advisory": "RHSA-2024:8581", "cpe": "cpe:/a:redhat:openshift_gitops:1.13::el8", "package": "openshift-gitops-1/kam-delivery-rhel8:v1.13.2-4", "product_name": "Red Hat OpenShift GitOps 1.13", "release_date": "2024-10-29T00:00:00Z"}, {"advisory": "RHSA-2024:8581", "cpe": "cpe:/a:redhat:openshift_gitops:1.13::el8", "package": "openshift-gitops-1/must-gather-rhel8:v1.13.2-4", "product_name": "Red Hat OpenShift GitOps 1.13", "release_date": "2024-10-29T00:00:00Z"}, {"advisory": "RHSA-2024:8581", "cpe": "cpe:/a:redhat:openshift_gitops:1.13::el8", "package": "openshift-gitops-argocd-rhel9-container-v1.13.2-5", "product_name": "Red Hat OpenShift GitOps 1.13", "release_date": "2024-10-29T00:00:00Z"}, {"advisory": "RHSA-2024:7726", "cpe": "cpe:/a:redhat:service_mesh:2.6::el8", "package": "openshift-service-mesh/grafana-rhel8:2.6.2-3", "product_name": "Red Hat OpenShift Service Mesh 2.6 for RHEL 8", "release_date": "2024-10-07T00:00:00Z"}, {"advisory": "RHSA-2024:7726", "cpe": "cpe:/a:redhat:service_mesh:2.6::el8", "package": "openshift-service-mesh/istio-cni-rhel8:2.6.2-5", "product_name": "Red Hat OpenShift Service Mesh 2.6 for RHEL 8", "release_date": "2024-10-07T00:00:00Z"}, {"advisory": "RHSA-2024:7726", "cpe": "cpe:/a:redhat:service_mesh:2.6::el8", "package": "openshift-service-mesh/istio-must-gather-rhel8:2.6.2-4", "product_name": "Red Hat OpenShift Service Mesh 2.6 for RHEL 8", "release_date": "2024-10-07T00:00:00Z"}, {"advisory": "RHSA-2024:7726", "cpe": "cpe:/a:redhat:service_mesh:2.6::el8", "package": "openshift-service-mesh/istio-rhel8-operator:2.6.2-5", "product_name": "Red Hat OpenShift Service Mesh 2.6 for RHEL 8", "release_date": "2024-10-07T00:00:00Z"}, {"advisory": "RHSA-2024:7726", "cpe": "cpe:/a:redhat:service_mesh:2.6::el8", "package": "openshift-service-mesh/kiali-ossmc-rhel8:1.89.2-3", "product_name": "Red Hat OpenShift Service Mesh 2.6 for RHEL 8", "release_date": "2024-10-07T00:00:00Z"}, {"advisory": "RHSA-2024:7726", "cpe": "cpe:/a:redhat:service_mesh:2.6::el8", "package": "openshift-service-mesh/kiali-rhel8:1.89.4-3", "product_name": "Red Hat OpenShift Service Mesh 2.6 for RHEL 8", "release_date": "2024-10-07T00:00:00Z"}, {"advisory": "RHSA-2024:7726", "cpe": "cpe:/a:redhat:service_mesh:2.6::el8", "package": "openshift-service-mesh/kiali-rhel8-operator:1.89.6-1", "product_name": "Red Hat OpenShift Service Mesh 2.6 for RHEL 8", "release_date": "2024-10-07T00:00:00Z"}, {"advisory": "RHSA-2024:7726", "cpe": "cpe:/a:redhat:service_mesh:2.6::el8", "package": "openshift-service-mesh/pilot-rhel8:2.6.2-5", "product_name": "Red Hat OpenShift Service Mesh 2.6 for RHEL 8", "release_date": "2024-10-07T00:00:00Z"}, {"advisory": "RHSA-2024:7726", "cpe": "cpe:/a:redhat:service_mesh:2.6::el8", "package": "openshift-service-mesh/ratelimit-rhel8:2.6.2-3", "product_name": "Red Hat OpenShift Service Mesh 2.6 for RHEL 8", "release_date": "2024-10-07T00:00:00Z"}, {"advisory": "RHSA-2024:7726", "cpe": "cpe:/a:redhat:service_mesh:2.6::el9", "package": "openshift-service-mesh/proxyv2-rhel9:2.6.2-7", "product_name": "Red Hat OpenShift Service Mesh 2.6 for RHEL 9", "release_date": "2024-10-07T00:00:00Z"}, {"advisory": "RHSA-2025:0323", "cpe": "cpe:/a:redhat:openshift_data_foundation:4.14::el9", "package": "odf4/odf-console-rhel9:v4.14.13-3", "product_name": "RHODF-4.14-RHEL-9", "release_date": "2025-01-15T00:00:00Z"}, {"advisory": "RHSA-2025:0164", "cpe": "cpe:/a:redhat:openshift_data_foundation:4.15::el9", "package": "odf4/odf-console-rhel9:v4.15.9-1", "product_name": "RHODF-4.15-RHEL-9", "release_date": "2025-01-09T00:00:00Z"}, {"advisory": "RHSA-2025:0082", "cpe": "cpe:/a:redhat:openshift_data_foundation:4.16::el9", "package": "odf4/ocs-client-console-rhel9:v4.16.5-2", "product_name": "RHODF-4.16-RHEL-9", "release_date": "2025-01-08T00:00:00Z"}, {"advisory": "RHSA-2025:0082", "cpe": "cpe:/a:redhat:openshift_data_foundation:4.16::el9", "package": "odf4/odf-console-rhel9:v4.16.5-2", "product_name": "RHODF-4.16-RHEL-9", "release_date": "2025-01-08T00:00:00Z"}, {"advisory": "RHSA-2025:0082", "cpe": "cpe:/a:redhat:openshift_data_foundation:4.16::el9", "package": "odf4/odf-multicluster-console-rhel9:v4.16.5-2", "product_name": "RHODF-4.16-RHEL-9", "release_date": "2025-01-08T00:00:00Z"}, {"advisory": "RHSA-2024:8676", "cpe": "cpe:/a:redhat:openshift_data_foundation:4.17::el9", "package": "odf4/mcg-core-rhel9:v4.17.0-69", "product_name": "RHODF-4.17-RHEL-9", "release_date": "2024-10-30T00:00:00Z"}, {"advisory": "RHSA-2024:8676", "cpe": "cpe:/a:redhat:openshift_data_foundation:4.17::el9", "package": "odf4/ocs-client-console-rhel9:v4.17.0-53", "product_name": "RHODF-4.17-RHEL-9", "release_date": "2024-10-30T00:00:00Z"}, {"advisory": "RHSA-2024:8676", "cpe": "cpe:/a:redhat:openshift_data_foundation:4.17::el9", "package": "odf4/odf-console-rhel9:v4.17.0-53", "product_name": "RHODF-4.17-RHEL-9", "release_date": "2024-10-30T00:00:00Z"}, {"advisory": "RHSA-2024:8676", "cpe": "cpe:/a:redhat:openshift_data_foundation:4.17::el9", "package": "odf4/odf-multicluster-console-rhel9:v4.17.0-53", "product_name": "RHODF-4.17-RHEL-9", "release_date": "2024-10-30T00:00:00Z"}, {"advisory": "RHSA-2024:7324", "cpe": "cpe:/a:redhat:logging:5.9::el9", "package": "openshift-logging/cluster-logging-operator-bundle:v5.9.7-11", "product_name": "RHOL-5.9-RHEL-9", "release_date": "2024-10-02T00:00:00Z"}, {"advisory": "RHSA-2024:7324", "cpe": "cpe:/a:redhat:logging:5.9::el9", "package": "openshift-logging/cluster-logging-rhel9-operator:v5.9.7-6", "product_name": "RHOL-5.9-RHEL-9", "release_date": "2024-10-02T00:00:00Z"}, {"advisory": "RHSA-2024:7324", "cpe": "cpe:/a:redhat:logging:5.9::el9", "package": "openshift-logging/eventrouter-rhel9:v0.4.0-301", "product_name": "RHOL-5.9-RHEL-9", "release_date": "2024-10-02T00:00:00Z"}, {"advisory": "RHSA-2024:7324", "cpe": "cpe:/a:redhat:logging:5.9::el9", "package": "openshift-logging/fluentd-rhel9:v5.9.7-3", "product_name": "RHOL-5.9-RHEL-9", "release_date": "2024-10-02T00:00:00Z"}, {"advisory": "RHSA-2024:7324", "cpe": "cpe:/a:redhat:logging:5.9::el9", "package": "openshift-logging/log-file-metric-exporter-rhel9:v1.1.0-282", "product_name": "RHOL-5.9-RHEL-9", "release_date": "2024-10-02T00:00:00Z"}, {"advisory": "RHSA-2024:7324", "cpe": "cpe:/a:redhat:logging:5.9::el9", "package": "openshift-logging/logging-loki-rhel9:v3.1.1-10", "product_name": "RHOL-5.9-RHEL-9", "release_date": "2024-10-02T00:00:00Z"}, {"advisory": "RHSA-2024:7324", "cpe": "cpe:/a:redhat:logging:5.9::el9", "package": "openshift-logging/logging-view-plugin-rhel9:v5.9.7-5", "product_name": "RHOL-5.9-RHEL-9", "release_date": "2024-10-02T00:00:00Z"}, {"advisory": "RHSA-2024:7324", "cpe": "cpe:/a:redhat:logging:5.9::el9", "package": "openshift-logging/loki-operator-bundle:v5.9.7-16", "product_name": "RHOL-5.9-RHEL-9", "release_date": "2024-10-02T00:00:00Z"}, {"advisory": "RHSA-2024:7324", "cpe": "cpe:/a:redhat:logging:5.9::el9", "package": "openshift-logging/loki-rhel9-operator:v5.9.7-7", "product_name": "RHOL-5.9-RHEL-9", "release_date": "2024-10-02T00:00:00Z"}, {"advisory": "RHSA-2024:7324", "cpe": "cpe:/a:redhat:logging:5.9::el9", "package": "openshift-logging/lokistack-gateway-rhel9:v0.1.0-653", "product_name": "RHOL-5.9-RHEL-9", "release_date": "2024-10-02T00:00:00Z"}, {"advisory": "RHSA-2024:7324", "cpe": "cpe:/a:redhat:logging:5.9::el9", "package": "openshift-logging/opa-openshift-rhel9:v0.1.0-288", "product_name": "RHOL-5.9-RHEL-9", "release_date": "2024-10-02T00:00:00Z"}, {"advisory": "RHSA-2024:7324", "cpe": "cpe:/a:redhat:logging:5.9::el9", "package": "openshift-logging/vector-rhel9:v0.34.1-19", "product_name": "RHOL-5.9-RHEL-9", "release_date": "2024-10-02T00:00:00Z"}, {"advisory": "RHSA-2025:0664", "cpe": "cpe:/a:redhat:openshift_serverless:1.35::el8", "package": "openshift-serverless-1/logic-data-index-ephemeral-rhel8:1.35.0-5", "product_name": "RHOSS-1.35-RHEL-8", "release_date": "2025-01-23T00:00:00Z"}, {"advisory": "RHSA-2025:0664", "cpe": "cpe:/a:redhat:openshift_serverless:1.35::el8", "package": "openshift-serverless-1/logic-data-index-postgresql-rhel8:1.35.0-5", "product_name": "RHOSS-1.35-RHEL-8", "release_date": "2025-01-23T00:00:00Z"}, {"advisory": "RHSA-2025:0664", "cpe": "cpe:/a:redhat:openshift_serverless:1.35::el8", "package": "openshift-serverless-1/logic-jobs-service-ephemeral-rhel8:1.35.0-5", "product_name": "RHOSS-1.35-RHEL-8", "release_date": "2025-01-23T00:00:00Z"}, {"advisory": "RHSA-2025:0664", "cpe": "cpe:/a:redhat:openshift_serverless:1.35::el8", "package": "openshift-serverless-1/logic-jobs-service-postgresql-rhel8:1.35.0-6", "product_name": "RHOSS-1.35-RHEL-8", "release_date": "2025-01-23T00:00:00Z"}, {"advisory": "RHSA-2025:0664", "cpe": "cpe:/a:redhat:openshift_serverless:1.35::el8", "package": "openshift-serverless-1/logic-kn-workflow-cli-artifacts-rhel8:1.35.0-2", "product_name": "RHOSS-1.35-RHEL-8", "release_date": "2025-01-23T00:00:00Z"}, {"advisory": "RHSA-2025:0664", "cpe": "cpe:/a:redhat:openshift_serverless:1.35::el8", "package": "openshift-serverless-1/logic-management-console-rhel8:1.35.0-5", "product_name": "RHOSS-1.35-RHEL-8", "release_date": "2025-01-23T00:00:00Z"}, {"advisory": "RHSA-2025:0664", "cpe": "cpe:/a:redhat:openshift_serverless:1.35::el8", "package": "openshift-serverless-1/logic-operator-bundle:1.35.0-5", "product_name": "RHOSS-1.35-RHEL-8", "release_date": "2025-01-23T00:00:00Z"}, {"advisory": "RHSA-2025:0664", "cpe": "cpe:/a:redhat:openshift_serverless:1.35::el8", "package": "openshift-serverless-1/logic-rhel8-operator:1.35.0-6", "product_name": "RHOSS-1.35-RHEL-8", "release_date": "2025-01-23T00:00:00Z"}, {"advisory": "RHSA-2025:0664", "cpe": "cpe:/a:redhat:openshift_serverless:1.35::el8", "package": "openshift-serverless-1/logic-swf-builder-rhel8:1.35.0-6", "product_name": "RHOSS-1.35-RHEL-8", "release_date": "2025-01-23T00:00:00Z"}, {"advisory": "RHSA-2025:0664", "cpe": "cpe:/a:redhat:openshift_serverless:1.35::el8", "package": "openshift-serverless-1/logic-swf-devmode-rhel8:1.35.0-6", "product_name": "RHOSS-1.35-RHEL-8", "release_date": "2025-01-23T00:00:00Z"}, {"advisory": "RHBA-2024:11265", "cpe": "cpe:/a:redhat:rhdh:1.4::el9", "package": "registry.redhat.io/rhdh/rhdh-hub-rhel9:sha256:48edcf6f736e17f33d3630ce2fddc19e95316b7824a7af24e9f0df48ac4f4fe3", "product_name": "Red Hat Developer Hub (RHDH) 1.4", "release_date": "2024-12-17T00:00:00Z"}, {"advisory": "RHSA-2025:3368", "cpe": "cpe:/a:redhat:openshift_ai:2.16::el8", "package": "registry.redhat.io/rhoai/odh-dashboard-rhel8:sha256:13da7e12e135cdb33c89686eca84cffae8ef691fcb4f346622ebd9b47f0a69ee", "product_name": "Red Hat OpenShift AI 2.16", "release_date": "2025-03-27T00:00:00Z"}, {"advisory": "RHSA-2025:3397", "cpe": "cpe:/a:redhat:openshift_ai:2.16::el8", "package": "registry.redhat.io/rhoai/odh-dashboard-rhel8:sha256:13da7e12e135cdb33c89686eca84cffae8ef691fcb4f346622ebd9b47f0a69ee", "product_name": "Red Hat OpenShift AI 2.16", "release_date": "2025-03-31T00:00:00Z"}, {"advisory": "RHSA-2024:10917", "cpe": "cpe:/a:redhat:openshift_distributed_tracing:3.4::el8", "package": "registry.redhat.io/rhosdt/jaeger-query-rhel8:sha256:648d95c1a6736055910cd901c7e80d82d0e8bad71531373293144d0d6682b994", "product_name": "Red Hat OpenShift distributed tracing 3.4", "release_date": "2024-12-10T00:00:00Z"}, {"advisory": "RHSA-2024:10962", "cpe": "cpe:/a:redhat:openshift_distributed_tracing:3.4::el8", "package": "registry.redhat.io/rhosdt/jaeger-query-rhel8:sha256:8d0e9eb0894de1289dfa9556cf9411874df3111f3e84471256de6b2d75ecd829", "product_name": "Red Hat OpenShift distributed tracing 3.4", "release_date": "2024-12-11T00:00:00Z"}, {"advisory": "RHSA-2024:9884", "cpe": "cpe:/a:redhat:trusted_profile_analyzer:1.2::el9", "package": "registry.redhat.io/rhtpa/rhtpa-trustification-service-rhel9:sha256:c1a20911cb6cc59707f517f6203c2f8cb26644ee25dd0ed967393c5f57194464", "product_name": "Red Hat Trusted Profile Analyzer 1.2", "release_date": "2024-11-18T00:00:00Z"}, {"advisory": "RHSA-2024:9885", "cpe": "cpe:/a:redhat:trusted_profile_analyzer:1.2::el9", "package": "registry.redhat.io/rhtpa/rhtpa-guac-rhel9:sha256:6911d51ce44779ef1a5f3428486698d19779da9316d799e0968047f01cef37f7", "product_name": "Red Hat Trusted Profile Analyzer 1.2", "release_date": "2024-11-18T00:00:00Z"}], "bugzilla": {"description": "path-to-regexp: Backtracking regular expressions cause ReDoS", "id": "2310908", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310908"}, "csaw": false, "cvss3": {"cvss3_base_score": "5.3", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "status": "verified"}, "cwe": "CWE-1333", "details": ["path-to-regexp turns path strings into a regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a DoS. The bad regular expression is generated any time you have two parameters within a single segment, separated by something that is not a period (.). For users of 0.1, upgrade to 0.1.10. All other users should upgrade to 8.0.0.", "A flaw was found in path-to-regexp package, where it turns path strings into regular expressions. In certain cases, path-to-regexp will output a regular expression that can be exploited to cause poor performance. Because JavaScript is single-threaded and regex matching runs on the main thread, poor performance will block the event loop and lead to a denial of service (DoS)."], "mitigation": {"lang": "en:us", "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."}, "name": "CVE-2024-45296", "package_state": [{"cpe": "cpe:/a:redhat:cryostat:3", "fix_state": "Fix deferred", "package_name": "path-to-regexp", "product_name": "Cryostat 3"}, {"cpe": "cpe:/a:redhat:migration_toolkit_applications:7", "fix_state": "Fix deferred", "package_name": "mta/mta-cli-rhel9", "product_name": "Migration Toolkit for Applications 7"}, {"cpe": "cpe:/a:redhat:migration_toolkit_applications:7", "fix_state": "Fix deferred", "package_name": "mta/mta-ui-rhel9", "product_name": "Migration Toolkit for Applications 7"}, {"cpe": "cpe:/a:redhat:migration_toolkit_runtimes:1", "fix_state": "Will not fix", "package_name": "path-to-regexp", "product_name": "Migration Toolkit for Runtimes"}, {"cpe": "cpe:/a:redhat:migration_toolkit_virtualization:2", "fix_state": "Not affected", "package_name": "migration-toolkit-virtualization/mtv-console-plugin-rhel9", "product_name": "Migration Toolkit for Virtualization"}, {"cpe": "cpe:/a:redhat:workload_availability_node_healthcheck", "fix_state": "Will not fix", "package_name": "workload-availability/node-remediation-console-rhel8", "product_name": "Node HealthCheck Operator"}, {"cpe": "cpe:/a:redhat:openshift_lightspeed", "fix_state": "Affected", "package_name": "openshift-lightspeed-beta/lightspeed-console-plugin-rhel9", "product_name": "OpenShift Lightspeed"}, {"cpe": "cpe:/a:redhat:openshift_pipelines:1", "fix_state": "Will not fix", "package_name": "openshift-pipelines-console-plugin-rhel8-container", "product_name": "OpenShift Pipelines"}, {"cpe": "cpe:/a:redhat:openshift_pipelines:1", "fix_state": "Will not fix", "package_name": "openshift-pipelines/pipelines-hub-api-rhel8", "product_name": "OpenShift Pipelines"}, {"cpe": "cpe:/a:redhat:openshift_pipelines:1", "fix_state": "Will not fix", "package_name": "openshift-pipelines/pipelines-hub-db-migration-rhel8", "product_name": "OpenShift Pipelines"}, {"cpe": "cpe:/a:redhat:openshift_pipelines:1", "fix_state": "Will not fix", "package_name": "openshift-pipelines/pipelines-hub-ui-rhel8", "product_name": "OpenShift Pipelines"}, {"cpe": "cpe:/a:redhat:red_hat_3scale_amp:2", "fix_state": "Will not fix", "package_name": "3scale-amp-system-container", "product_name": "Red Hat 3scale API Management Platform 2"}, {"cpe": "cpe:/a:redhat:advanced_cluster_security:4", "fix_state": "Not affected", "package_name": "advanced-cluster-security/rhacs-central-db-rhel8", "product_name": "Red Hat Advanced Cluster Security 4"}, {"cpe": "cpe:/a:redhat:advanced_cluster_security:4", "fix_state": "Will not fix", "package_name": "advanced-cluster-security/rhacs-main-rhel8", "product_name": "Red Hat Advanced Cluster Security 4"}, {"cpe": "cpe:/a:redhat:advanced_cluster_security:4", "fix_state": "Not affected", "package_name": "advanced-cluster-security/rhacs-rhel8-operator", "product_name": "Red Hat Advanced Cluster Security 4"}, {"cpe": "cpe:/a:redhat:advanced_cluster_security:4", "fix_state": "Not affected", "package_name": "advanced-cluster-security/rhacs-roxctl-rhel8", "product_name": "Red Hat Advanced Cluster Security 4"}, {"cpe": "cpe:/a:redhat:advanced_cluster_security:4", "fix_state": "Not affected", "package_name": "advanced-cluster-security/rhacs-scanner-v4-db-rhel8", "product_name": "Red Hat Advanced Cluster Security 4"}, {"cpe": "cpe:/a:redhat:advanced_cluster_security:4", "fix_state": "Not affected", "package_name": "advanced-cluster-security/rhacs-scanner-v4-rhel8", "product_name": "Red Hat Advanced Cluster Security 4"}, {"cpe": "cpe:/a:redhat:ansible_automation_platform", "fix_state": "Will not fix", "package_name": "ansible-tower", "product_name": "Red Hat Ansible Automation Platform 1.2"}, {"cpe": "cpe:/a:redhat:ansible_automation_platform:2", "fix_state": "Affected", "package_name": "aap-cloud-ui-container", "product_name": "Red Hat Ansible Automation Platform 2"}, {"cpe": "cpe:/a:redhat:ansible_automation_platform:2", "fix_state": "Not affected", "package_name": "ansible-automation-platform-24/lightspeed-rhel8", "product_name": "Red Hat Ansible Automation Platform 2"}, {"cpe": "cpe:/a:redhat:ansible_automation_platform:2", "fix_state": "Not affected", "package_name": "automation-eda-controller", "product_name": "Red Hat Ansible Automation Platform 2"}, {"cpe": "cpe:/a:redhat:optaplanner:::el6", "fix_state": "Affected", "package_name": "path-to-regexp", "product_name": "Red Hat build of OptaPlanner 8"}, {"cpe": "cpe:/a:redhat:jboss_data_grid:8", "fix_state": "Will not fix", "package_name": "path-to-regexp", "product_name": "Red Hat Data Grid 8"}, {"cpe": "cpe:/a:redhat:rhdh:1", "fix_state": "Will not fix", "package_name": "rhdh-operator-container", "product_name": "Red Hat Developer Hub"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Out of support scope", "package_name": "firefox", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Out of support scope", "package_name": "thunderbird", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Out of support scope", "package_name": "thunderbird", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "mozjs60", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "pcs", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "gjs", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "pcs", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "polkit", "product_name": "Red Hat Enterprise Linux 9"}, {"cpe": "cpe:/a:redhat:jboss_fuse:7", "fix_state": "Will not fix", "package_name": "path-to-regexp", "product_name": "Red Hat Fuse 7"}, {"cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:7", "fix_state": "Not affected", "package_name": "path-to-regexp", "product_name": "Red Hat JBoss Enterprise Application Platform 7"}, {"cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:8", "fix_state": "Not affected", "package_name": "path-to-regexp", "product_name": "Red Hat JBoss Enterprise Application Platform 8"}, {"cpe": "cpe:/a:redhat:jbosseapxp", "fix_state": "Not affected", "package_name": "path-to-regexp", "product_name": "Red Hat JBoss Enterprise Application Platform Expansion Pack"}, {"cpe": "cpe:/a:redhat:openshift_ai", "fix_state": "Will not fix", "package_name": "odh-dashboard-container", "product_name": "Red Hat OpenShift AI (RHOAI)"}, {"cpe": "cpe:/a:redhat:openshift_ai", "fix_state": "Not affected", "package_name": "odh-operator-container", "product_name": "Red Hat OpenShift AI (RHOAI)"}, {"cpe": "cpe:/a:redhat:openshift:3.11", "fix_state": "Out of support scope", "package_name": "openshift3/ose-console", "product_name": "Red Hat OpenShift Container Platform 3.11"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Will not fix", "package_name": "openshift4/ose-console", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift:4", "fix_state": "Will not fix", "package_name": "openshift4/ose-networking-console-plugin-rhel9", "product_name": "Red Hat OpenShift Container Platform 4"}, {"cpe": "cpe:/a:redhat:openshift_container_storage:4", "fix_state": "Out of support scope", "package_name": "ocs4/mcg-core-rhel8", "product_name": "Red Hat Openshift Container Storage 4"}, {"cpe": "cpe:/a:redhat:openshift_devspaces:3:", "fix_state": "Will not fix", "package_name": "devspaces/code-rhel8", "product_name": "Red Hat OpenShift Dev Spaces"}, {"cpe": "cpe:/a:redhat:openshift_devspaces:3:", "fix_state": "Not affected", "package_name": "devspaces/traefik-rhel8", "product_name": "Red Hat OpenShift Dev Spaces"}, {"cpe": "cpe:/a:redhat:openshift_distributed_tracing:3", "fix_state": "Not affected", "package_name": "rhosdt/jaeger-agent-rhel8", "product_name": "Red Hat OpenShift distributed tracing 3"}, {"cpe": "cpe:/a:redhat:openshift_distributed_tracing:3", "fix_state": "Not affected", "package_name": "rhosdt/jaeger-collector-rhel8", "product_name": "Red Hat OpenShift distributed tracing 3"}, {"cpe": "cpe:/a:redhat:openshift_distributed_tracing:3", "fix_state": "Not affected", "package_name": "rhosdt/jaeger-es-index-cleaner-rhel8", "product_name": "Red Hat OpenShift distributed tracing 3"}, {"cpe": "cpe:/a:redhat:openshift_distributed_tracing:3", "fix_state": "Not affected", "package_name": "rhosdt/jaeger-es-rollover-rhel8", "product_name": "Red Hat OpenShift distributed tracing 3"}, {"cpe": "cpe:/a:redhat:openshift_distributed_tracing:3", "fix_state": "Not affected", "package_name": "rhosdt/jaeger-ingester-rhel8", "product_name": "Red Hat OpenShift distributed tracing 3"}, {"cpe": "cpe:/a:redhat:openshift_distributed_tracing:3", "fix_state": "Affected", "package_name": "rhosdt/jaeger-query-rhel8", "product_name": "Red Hat OpenShift distributed tracing 3"}, {"cpe": "cpe:/a:redhat:container_native_virtualization:4", "fix_state": "Will not fix", "package_name": "container-native-virtualization/kubevirt-console-plugin", "product_name": "Red Hat OpenShift Virtualization 4"}, {"cpe": "cpe:/a:redhat:container_native_virtualization:4", "fix_state": "Will not fix", "package_name": "container-native-virtualization/kubevirt-console-plugin-rhel9", "product_name": "Red Hat OpenShift Virtualization 4"}, {"cpe": "cpe:/a:redhat:jboss_enterprise_bpms_platform:7", "fix_state": "Will not fix", "package_name": "path-to-regexp", "product_name": "Red Hat Process Automation 7"}, {"cpe": "cpe:/a:redhat:quay:3", "fix_state": "Affected", "package_name": "quay/quay-rhel8", "product_name": "Red Hat Quay 3"}, {"cpe": "cpe:/o:redhat:rhev_hypervisor:4", "fix_state": "Affected", "package_name": "cockpit-ovirt", "product_name": "Red Hat Virtualization 4"}, {"cpe": "cpe:/o:redhat:rhev_hypervisor:4", "fix_state": "Affected", "package_name": "ovirt-web-ui", "product_name": "Red Hat Virtualization 4"}], "public_date": "2024-09-09T19:15:13Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2024-45296\nhttps://nvd.nist.gov/vuln/detail/CVE-2024-45296\nhttps://github.com/pillarjs/path-to-regexp/commit/29b96b4a1de52824e1ca0f49a701183cc4ed476f\nhttps://github.com/pillarjs/path-to-regexp/commit/60f2121e9b66b7b622cc01080df0aabda9eedee6\nhttps://github.com/pillarjs/path-to-regexp/security/advisories/GHSA-9wv6-86v2-598j"], "threat_severity": "Moderate"}