High severity8.8NVD Advisory· Published Jun 2, 2026· Updated Jun 11, 2026
CVE-2026-1784
CVE-2026-1784
Description
The Route OpenShift resource allows to define routes to make pods reachable at a subdomain through HAProxy. It was found that the checks performed on the spec.path YAML stanza in a Route document was insufficient and could allow a controlled injection of the HAProxy configuration.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:redhat:openshift_container_platform:4.0:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
4- access.redhat.com/security/cve/CVE-2026-1784nvdVendor Advisory
- bugzilla.redhat.com/show_bug.cginvdIssue TrackingVendor Advisory
- access.redhat.com/errata/RHSA-2026:23241nvd
- access.redhat.com/errata/RHSA-2026:23246nvd
News mentions
0No linked articles in our index yet.