RHSA-2024:5810
Advisory lineage Upstream: 3 Downstream: 0
Published: 02 Oct 2024, 11:05
Last modified:03 Jun 2026, 10:08
Vulnerability Summary
Overall Risk (default)
medium
30/100 CVSS Score
7.5 HIGH
3.1 (osv_red_hat)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
02 Oct 2024, 11:05
Published
Vulnerability first disclosed
03 Jun 2026, 10:08
Last Modified
Vulnerability information updated
Description
Red Hat Security Advisory: OpenShift Container Platform 4.12.64 security update
CVSS Metrics
- v3.1•HIGH•Score: 7.5CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Systems
- redhat•openshift
< 0:4.12.0-202408131833.p0.g1eb8682.assembly.stream.el8 | < 0:4.12.0-202408131833.p0.g1eb8682.assembly.stream.el9
- redhat•openshift-hyperkube
< 0:4.12.0-202408131833.p0.g1eb8682.assembly.stream.el8 | < 0:4.12.0-202408131833.p0.g1eb8682.assembly.stream.el9
- redhat•python-jinja2
< 0:3.0.1-3.el9.1
- redhat•python-werkzeug
< 0:2.0.3-6.el9
- redhat•python3-jinja2
< 0:3.0.1-3.el9.1
- redhat•python3-werkzeug
< 0:2.0.3-6.el9
References (24)
- https://access.redhat.com/errata/RHSA-2024:5810
- https://access.redhat.com/security/updates/classification/#important
- https://bugzilla.redhat.com/show_bug.cgi?id=2268017
- https://bugzilla.redhat.com/show_bug.cgi?id=2279451
- https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_5810.json
- https://access.redhat.com/security/cve/CVE-2023-45290
- https://www.cve.org/CVERecord?id=CVE-2023-45290
- https://nvd.nist.gov/vuln/detail/CVE-2023-45290
- http://www.openwall.com/lists/oss-security/2024/03/08/4
- https://go.dev/cl/569341
- https://go.dev/issue/65383
- https://groups.google.com/g/golang-announce/c/5pwGVUPoMbg
- https://pkg.go.dev/vuln/GO-2024-2599
- https://security.netapp.com/advisory/ntap-20240329-0004
- https://access.redhat.com/security/cve/CVE-2024-34064
- https://bugzilla.redhat.com/show_bug.cgi?id=2279476
- https://www.cve.org/CVERecord?id=CVE-2024-34064
- https://nvd.nist.gov/vuln/detail/CVE-2024-34064
- https://github.com/pallets/jinja/security/advisories/GHSA-h75v-3vvj-5mfj
- https://access.redhat.com/security/cve/CVE-2024-34069
- https://www.cve.org/CVERecord?id=CVE-2024-34069
- https://nvd.nist.gov/vuln/detail/CVE-2024-34069
- https://github.com/pallets/werkzeug/commit/3386395b24c7371db11a5b8eaac0c91da5362692
- https://github.com/pallets/werkzeug/security/advisories/GHSA-2g68-c3qc-8985