Security
Headlines

Headline

CVE-2022-1632: Invalid Bug ID

An Improper Certificate Validation attack was found in Openshift. A re-encrypt Route with destinationCACertificate explicitly set to the default serviceCA skips internal Service TLS certificate validation. This flaw allows an attacker to exploit an invalid certificate, resulting in a loss of confidentiality.

‘2081181?cve=title’ is not a valid bug number nor an alias to a bug.

Please press Back and try again.

Related news

CVE-2022-1632: Red Hat Customer Portal - Access to 24x7 support and knowledge

An Improper Certificate Validation attack was found in Openshift. A re-encrypt Route with destinationCACertificate explicitly set to the default serviceCA skips internal Service TLS certificate validation. This flaw allows an attacker to exploit an invalid certificate, resulting in a loss of confidentiality.

We use cookies to provide necessary website functionality, and improve your user experience. By using the website, you agree to Privacy Policy and cookies usage.