RHSA-2023:4093
Advisory lineage Upstream: 8 Downstream: 0
Published: 30 Sept 2024, 14:49
Last modified:04 Jun 2026, 10:01
Vulnerability Summary
Overall Risk (default)
high
70/100 CVSS Score
9.8 CRITICAL
3.1 (osv_red_hat)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
30 Sept 2024, 14:49
Published
Vulnerability first disclosed
04 Jun 2026, 10:01
Last Modified
Vulnerability information updated
Description
Red Hat Security Advisory: OpenShift Container Platform 4.13.5 security update
CVSS Metrics
- v3.1•CRITICAL•Score: 9.8CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Systems
- redhat•openshift
< 0:4.13.0-202307132344.p0.gf245ced.assembly.stream.el8 | < 0:4.13.0-202307132344.p0.gf245ced.assembly.stream.el9
- redhat•openshift-clients
< 0:4.13.0-202306230038.p0.ge4c9a6a.assembly.stream.el8 | < 0:4.13.0-202306230038.p0.ge4c9a6a.assembly.stream.el9
- redhat•openshift-clients-redistributable
< 0:4.13.0-202306230038.p0.ge4c9a6a.assembly.stream.el8 | < 0:4.13.0-202306230038.p0.ge4c9a6a.assembly.stream.el9
- redhat•openshift-hyperkube
< 0:4.13.0-202307132344.p0.gf245ced.assembly.stream.el8 | < 0:4.13.0-202307132344.p0.gf245ced.assembly.stream.el9
References (47)
- https://access.redhat.com/errata/RHSA-2023:4093
- https://access.redhat.com/security/updates/classification/#important
- https://access.redhat.com/security/vulnerabilities/RHSB-2023-001
- https://docs.openshift.com/container-platform/4.13/release_notes/ocp-4-13-release-notes.html
- https://bugzilla.redhat.com/show_bug.cgi?id=2175721
- https://bugzilla.redhat.com/show_bug.cgi?id=2176267
- https://bugzilla.redhat.com/show_bug.cgi?id=2184481
- https://bugzilla.redhat.com/show_bug.cgi?id=2184482
- https://bugzilla.redhat.com/show_bug.cgi?id=2184483
- https://bugzilla.redhat.com/show_bug.cgi?id=2184484
- https://bugzilla.redhat.com/show_bug.cgi?id=2196026
- https://bugzilla.redhat.com/show_bug.cgi?id=2196029
- https://bugzilla.redhat.com/show_bug.cgi?id=2212085
- https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_4093.json
- https://access.redhat.com/security/cve/CVE-2023-1260
- https://www.cve.org/CVERecord?id=CVE-2023-1260
- https://nvd.nist.gov/vuln/detail/CVE-2023-1260
- https://github.com/advisories/GHSA-92hx-3mh6-hc49
- https://access.redhat.com/security/cve/CVE-2023-3089
- https://www.cve.org/CVERecord?id=CVE-2023-3089
- https://nvd.nist.gov/vuln/detail/CVE-2023-3089
- https://access.redhat.com/security/cve/CVE-2023-24534
- https://www.cve.org/CVERecord?id=CVE-2023-24534
- https://nvd.nist.gov/vuln/detail/CVE-2023-24534
- https://go.dev/issue/58975
- https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8
- https://access.redhat.com/security/cve/CVE-2023-24536
- https://www.cve.org/CVERecord?id=CVE-2023-24536
- https://nvd.nist.gov/vuln/detail/CVE-2023-24536
- https://go.dev/issue/59153
- https://access.redhat.com/security/cve/CVE-2023-24537
- https://www.cve.org/CVERecord?id=CVE-2023-24537
- https://nvd.nist.gov/vuln/detail/CVE-2023-24537
- https://github.com/golang/go/issues/59180
- https://access.redhat.com/security/cve/CVE-2023-24538
- https://www.cve.org/CVERecord?id=CVE-2023-24538
- https://nvd.nist.gov/vuln/detail/CVE-2023-24538
- https://github.com/golang/go/issues/59234
- https://access.redhat.com/security/cve/CVE-2023-24539
- https://www.cve.org/CVERecord?id=CVE-2023-24539
- https://nvd.nist.gov/vuln/detail/CVE-2023-24539
- https://github.com/golang/go/issues/59720
- https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU
- https://access.redhat.com/security/cve/CVE-2023-29400
- https://www.cve.org/CVERecord?id=CVE-2023-29400
- https://nvd.nist.gov/vuln/detail/CVE-2023-29400
- https://go.dev/issue/59722