Unrated severityOSV Advisory· Published Feb 5, 2019· Updated Aug 4, 2024

CVE-2019-3818

Description

The kube-rbac-proxy container before version 0.4.1 as used in Red Hat OpenShift Container Platform does not honor TLS configurations, allowing for use of insecure ciphers and TLS 1.0. An attacker could target traffic sent over a TLS connection with a weak configuration and potentially break the encryption.

Affected products

Brancz/Kube Rbac ProxyOSV
Range: v0.1.0, v0.2.0, v0.3.0, …

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

access.redhat.com/errata/RHBA-2019:0327mitrevendor-advisoryx_refsource_REDHAT
www.securityfocus.com/bid/106744mitrevdb-entryx_refsource_BID
access.redhat.com/security/cve/CVE-2019-3818mitrex_refsource_CONFIRM
bugzilla.redhat.com/show_bug.cgimitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000