Unrated severityNVD Advisory· Published Sep 27, 2023· Updated Nov 20, 2025
Operator: passwords defined in secrets shown in statefulset yaml
CVE-2023-4066
Description
A flaw was found in Red Hat's AMQ Broker, which stores certain passwords in a secret security-properties-prop-module, defined in ActivemqArtemisSecurity CR; however, they are shown in plaintext in the StatefulSet details yaml of AMQ Broker.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Red Hat/Red Hat AMQ Broker 7v5cpe:/a:redhat:amq_broker:7
- Red Hat/RHEL-8 based Middleware Containersv5cpe:/a:redhat:rhosemc:1.0::el8Range: 7.11.1-12
Patches
Vulnerability mechanics
References
3- access.redhat.com/errata/RHSA-2023:4720mitrevendor-advisoryx_refsource_REDHAT
- access.redhat.com/security/cve/CVE-2023-4066mitrevdb-entryx_refsource_REDHAT
- bugzilla.redhat.com/show_bug.cgimitreissue-trackingx_refsource_REDHAT
News mentions
0No linked articles in our index yet.