VYPR
Unrated severityNVD Advisory· Published Sep 27, 2023· Updated Nov 20, 2025

Operator: passwords defined in secrets shown in statefulset yaml

CVE-2023-4066

Description

A flaw was found in Red Hat's AMQ Broker, which stores certain passwords in a secret security-properties-prop-module, defined in ActivemqArtemisSecurity CR; however, they are shown in plaintext in the StatefulSet details yaml of AMQ Broker.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • Red Hat/Red Hat AMQ Broker 7v5
    cpe:/a:redhat:amq_broker:7
  • Red Hat/RHEL-8 based Middleware Containersv5
    cpe:/a:redhat:rhosemc:1.0::el8
    Range: 7.11.1-12

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.