Unrated severityNVD Advisory· Published Aug 24, 2022· Updated Aug 3, 2024

CVE-2021-4125

Description

It was found that the original fix for log4j CVE-2021-44228 and CVE-2021-45046 in the OpenShift metering hive containers was incomplete, as not all JndiLookup.class files were removed. This CVE only applies to the OpenShift Metering hive container images, shipped in OpenShift 4.8, 4.7 and 4.6.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

OpenShift/metering hive containersdescription
Red Hat/OpenShift Metering hivellm-create

Patches

Vulnerability mechanics

References

access.redhat.com/security/cve/CVE-2021-4125mitrex_refsource_MISC
access.redhat.com/security/cve/CVE-2021-44228mitrex_refsource_MISC
access.redhat.com/security/cve/CVE-2021-45046mitrex_refsource_MISC
bugzilla.redhat.com/show_bug.cgimitrex_refsource_MISC
github.com/kube-reporting/hive/pull/71mitrex_refsource_MISC
github.com/kube-reporting/hive/pull/72mitrex_refsource_MISC
github.com/kube-reporting/hive/pull/73mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000