Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2026-25896 (GCVE-0-2026-25896)
Vulnerability from cvelistv5 – Published: 2026-02-20 20:57 – Updated: 2026-06-30 03:17
VLAI
EPSS
Title
fast-xml-parser has an entity encoding bypass via regex injection in DOCTYPE entity names
Summary
fast-xml-parser allows users to validate XML, parse XML to JS object, or build XML from JS object without C/C++ based libraries and no callback. From 4.1.3to before 5.3.5, a dot (.) in a DOCTYPE entity name is treated as a regex wildcard during entity replacement, allowing an attacker to shadow built-in XML entities (<, >, &, ", ') with arbitrary values. This bypasses entity encoding and leads to XSS when parsed output is rendered. This vulnerability is fixed in 5.3.5.
Severity
9.3 (Critical)
7.1 (High)
SSVC
Exploitation: poc
Automatable: yes
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
Assigner
References
11 references
| URL | Tags |
|---|---|
| https://github.com/NaturalIntelligence/fast-xml-p… | x_refsource_CONFIRM |
| https://github.com/NaturalIntelligence/fast-xml-p… | x_refsource_MISC |
| https://github.com/NaturalIntelligence/fast-xml-p… | x_refsource_MISC |
| https://github.com/NaturalIntelligence/fast-xml-p… | x_refsource_MISC |
| https://access.redhat.com/security/cve/CVE-2026-25896 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2441501 | issue-trackingx_refsource_REDHAT |
| https://security.access.redhat.com/data/csaf/v2/v… | x_sadp-csaf-vex |
| https://access.redhat.com/errata/RHSA-2026:7110 | vendor-advisoryx_refsource_REDHAT |
| https://access.redhat.com/errata/RHSA-2026:7128 | vendor-advisoryx_refsource_REDHAT |
| https://access.redhat.com/errata/RHSA-2026:6174 | vendor-advisoryx_refsource_REDHAT |
| https://access.redhat.com/errata/RHSA-2026:6802 | vendor-advisoryx_refsource_REDHAT |
Impacted products
11 products
| Vendor | Product | Version | |
|---|---|---|---|
| NaturalIntelligence | fast-xml-parser |
Affected:
>= 5.0.0, < 5.3.5
Affected: >= 4.1.3, < 4.5.4 |
|
| Red Hat | Red Hat Advanced Cluster Security for Kubernetes 4.8 |
cpe:/a:redhat:advanced_cluster_security:4.8::el8 |
|
| Red Hat | Red Hat Advanced Cluster Security for Kubernetes 4.9 |
cpe:/a:redhat:advanced_cluster_security:4.9::el8 |
|
| Red Hat | Red Hat Developer Hub 1.8 |
cpe:/a:redhat:rhdh:1.8::el9 |
|
| Red Hat | Red Hat Developer Hub 1.9 |
cpe:/a:redhat:rhdh:1.9::el9 |
|
| Red Hat | Migration Toolkit for Applications 8 |
cpe:/a:redhat:migration_toolkit_applications:8 |
|
| Red Hat | Red Hat Openshift Data Foundation 4 |
cpe:/a:redhat:openshift_data_foundation:4 |
|
| Red Hat | Red Hat OpenShift GitOps |
cpe:/a:redhat:openshift_gitops:1 |
|
| Red Hat | Red Hat OpenShift Virtualization 4 |
cpe:/a:redhat:container_native_virtualization:4 |
|
| Red Hat | Red Hat Satellite 6 |
cpe:/a:redhat:satellite:6 |
|
| Red Hat | Self-service automation portal 2 |
cpe:/a:redhat:ansible_portal:2 |
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-25896",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-02-23T19:26:46.154155Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-02-23T19:29:10.187Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"affected": [
{
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.8::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Security for Kubernetes 4.8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:advanced_cluster_security:4.9::el8"
],
"defaultStatus": "affected",
"product": "Red Hat Advanced Cluster Security for Kubernetes 4.9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhdh:1.8::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Developer Hub 1.8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:rhdh:1.9::el9"
],
"defaultStatus": "affected",
"product": "Red Hat Developer Hub 1.9",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:migration_toolkit_applications:8"
],
"defaultStatus": "affected",
"product": "Migration Toolkit for Applications 8",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_data_foundation:4"
],
"defaultStatus": "affected",
"product": "Red Hat Openshift Data Foundation 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:openshift_gitops:1"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift GitOps",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:container_native_virtualization:4"
],
"defaultStatus": "affected",
"product": "Red Hat OpenShift Virtualization 4",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:satellite:6"
],
"defaultStatus": "affected",
"product": "Red Hat Satellite 6",
"vendor": "Red Hat"
},
{
"cpes": [
"cpe:/a:redhat:ansible_portal:2"
],
"defaultStatus": "affected",
"product": "Self-service automation portal 2",
"vendor": "Red Hat"
}
],
"datePublic": "2026-02-20T20:57:48.074Z",
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by providing a specially crafted XML input. The system incorrectly interprets a dot in a DOCTYPE entity name as a regular expression wildcard during processing. This allows the attacker to bypass security measures and inject malicious scripts, resulting in Cross-Site Scripting (XSS) when the parsed output is displayed to users."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Important"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-79",
"description": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-06-30T03:17:26.115Z",
"orgId": "0b0ca135-0b70-47e7-9f44-1890c2a1c46c",
"shortName": "redhat-SADP"
},
"references": [
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2026-25896"
},
{
"name": "RHBZ#2441501",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2441501"
},
{
"tags": [
"x_sadp-csaf-vex"
],
"url": "https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-25896.json"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7110"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:7128"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:6174"
},
{
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2026:6802"
}
],
"solutions": [
{
"lang": "en",
"value": "RHSA-2026:7110: Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"lang": "en",
"value": "RHSA-2026:7128: Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"lang": "en",
"value": "RHSA-2026:6174: Red Hat Developer Hub 1.8"
},
{
"lang": "en",
"value": "RHSA-2026:6802: Red Hat Developer Hub 1.9"
}
],
"timeline": [
{
"lang": "en",
"time": "2026-02-20T22:01:59.622Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2026-02-20T20:57:48.074Z",
"value": "Made public."
}
],
"title": "fast-xml-parser: fast-xml-parser: Cross-Site Scripting (XSS) due to improper DOCTYPE entity handling",
"workarounds": [
{
"lang": "en",
"value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."
}
],
"x_adpType": "supplier",
"x_generator": {
"engine": "sadp-cli 1.0.0"
}
}
],
"cna": {
"affected": [
{
"product": "fast-xml-parser",
"vendor": "NaturalIntelligence",
"versions": [
{
"status": "affected",
"version": "\u003e= 5.0.0, \u003c 5.3.5"
},
{
"status": "affected",
"version": "\u003e= 4.1.3, \u003c 4.5.4"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "fast-xml-parser allows users to validate XML, parse XML to JS object, or build XML from JS object without C/C++ based libraries and no callback. From 4.1.3to before 5.3.5, a dot (.) in a DOCTYPE entity name is treated as a regex wildcard during entity replacement, allowing an attacker to shadow built-in XML entities (\u0026lt;, \u0026gt;, \u0026amp;, \u0026quot;, \u0026apos;) with arbitrary values. This bypasses entity encoding and leads to XSS when parsed output is rendered. This vulnerability is fixed in 5.3.5."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.3,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:H/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-185",
"description": "CWE-185: Incorrect Regular Expression",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-03-02T19:11:31.673Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-m7jm-9gc2-mpf2",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-m7jm-9gc2-mpf2"
},
{
"name": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/943ef0eb1b2d3284e72dd74f44a042ee9f07026e",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/943ef0eb1b2d3284e72dd74f44a042ee9f07026e"
},
{
"name": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/ddcd0acf26ddd682cb0dc15a2bd6aa3b96bb1e69",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/ddcd0acf26ddd682cb0dc15a2bd6aa3b96bb1e69"
},
{
"name": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.5",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.5"
}
],
"source": {
"advisory": "GHSA-m7jm-9gc2-mpf2",
"discovery": "UNKNOWN"
},
"title": "fast-xml-parser has an entity encoding bypass via regex injection in DOCTYPE entity names"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2026-25896",
"datePublished": "2026-02-20T20:57:48.074Z",
"dateReserved": "2026-02-06T21:08:39.130Z",
"dateUpdated": "2026-06-30T03:17:26.115Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2026-25896",
"date": "2026-06-29",
"epss": "0.00448",
"percentile": "0.35812"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2026-25896\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2026-02-20T21:19:27.470\",\"lastModified\":\"2026-06-30T03:17:45.613\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"fast-xml-parser allows users to validate XML, parse XML to JS object, or build XML from JS object without C/C++ based libraries and no callback. From 4.1.3to before 5.3.5, a dot (.) in a DOCTYPE entity name is treated as a regex wildcard during entity replacement, allowing an attacker to shadow built-in XML entities (\u0026lt;, \u0026gt;, \u0026amp;, \u0026quot;, \u0026apos;) with arbitrary values. This bypasses entity encoding and leads to XSS when parsed output is rendered. This vulnerability is fixed in 5.3.5.\"},{\"lang\":\"es\",\"value\":\"fast-xml-parser permite a los usuarios validar XML, analizar XML a objeto JS, o construir XML desde objeto JS sin librer\u00edas basadas en C/C++ y sin callback. Desde la versi\u00f3n 4.1.3 hasta antes de la 5.3.5, un punto (.) en un nombre de entidad DOCTYPE es tratado como un comod\u00edn de expresi\u00f3n regular durante el reemplazo de entidades, permitiendo a un atacante sombrear entidades XML incorporadas (\u0026lt;, \u0026gt;, \u0026amp;, \\\", \u0027) con valores arbitrarios. Esto omite la codificaci\u00f3n de entidades y conduce a XSS cuando la salida analizada es renderizada. Esta vulnerabilidad se corrige en la versi\u00f3n 5.3.5.\"}],\"affected\":[{\"source\":\"security-advisories@github.com\",\"affectedData\":[{\"vendor\":\"NaturalIntelligence\",\"product\":\"fast-xml-parser\",\"versions\":[{\"version\":\"\u003e= 5.0.0, \u003c 5.3.5\",\"status\":\"affected\"},{\"version\":\"\u003e= 4.1.3, \u003c 4.5.4\",\"status\":\"affected\"}]}]},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"affectedData\":[{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Security for Kubernetes 4.8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:advanced_cluster_security:4.8::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Advanced Cluster Security for Kubernetes 4.9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:advanced_cluster_security:4.9::el8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Developer Hub 1.8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhdh:1.8::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Developer Hub 1.9\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:rhdh:1.9::el9\"]},{\"vendor\":\"Red Hat\",\"product\":\"Migration Toolkit for Applications 8\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:migration_toolkit_applications:8\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Openshift Data Foundation 4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_data_foundation:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift GitOps\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:openshift_gitops:1\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat OpenShift Virtualization 4\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:container_native_virtualization:4\"]},{\"vendor\":\"Red Hat\",\"product\":\"Red Hat Satellite 6\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:satellite:6\"]},{\"vendor\":\"Red Hat\",\"product\":\"Self-service automation portal 2\",\"defaultStatus\":\"affected\",\"cpes\":[\"cpe:/a:redhat:ansible_portal:2\"]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:H/A:N\",\"baseScore\":9.3,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":4.7},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L\",\"baseScore\":7.1,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"LOW\"},\"exploitabilityScore\":2.8,\"impactScore\":3.7}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2026-02-23T19:26:46.154155Z\",\"id\":\"CVE-2026-25896\",\"options\":[{\"exploitation\":\"poc\"},{\"automatable\":\"yes\"},{\"technicalImpact\":\"partial\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-185\"}]},{\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-79\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:naturalintelligence:fast-xml-parser:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.1.3\",\"versionEndExcluding\":\"5.3.5\",\"matchCriteriaId\":\"CC7C6F3C-019C-4D48-A09F-D926B57DC0BC\"}]}]}],\"references\":[{\"url\":\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/943ef0eb1b2d3284e72dd74f44a042ee9f07026e\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/NaturalIntelligence/fast-xml-parser/commit/ddcd0acf26ddd682cb0dc15a2bd6aa3b96bb1e69\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.5\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Product\",\"Release Notes\"]},{\"url\":\"https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-m7jm-9gc2-mpf2\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Exploit\",\"Mitigation\",\"Vendor Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:6174\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:6802\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7110\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2026:7128\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2026-25896\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2441501\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"},{\"url\":\"https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-25896.json\",\"source\":\"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"fast-xml-parser: fast-xml-parser: Cross-Site Scripting (XSS) due to improper DOCTYPE entity handling\", \"metrics\": [{\"other\": {\"type\": \"Red Hat severity rating\", \"content\": {\"value\": \"Important\", \"namespace\": \"https://access.redhat.com/security/updates/classification/\"}}}, {\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"CHANGED\", \"version\": \"3.1\", \"baseScore\": 7.1, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L\", \"integrityImpact\": \"LOW\", \"userInteraction\": \"REQUIRED\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"LOW\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"LOW\"}}], \"affected\": [{\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.8::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security for Kubernetes 4.8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_cluster_security:4.9::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Advanced Cluster Security for Kubernetes 4.9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhdh:1.8::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Developer Hub 1.8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhdh:1.9::el9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Developer Hub 1.9\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:migration_toolkit_applications:8\"], \"vendor\": \"Red Hat\", \"product\": \"Migration Toolkit for Applications 8\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_data_foundation:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Openshift Data Foundation 4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:openshift_gitops:1\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift GitOps\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:container_native_virtualization:4\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat OpenShift Virtualization 4\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:satellite:6\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Satellite 6\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:ansible_portal:2\"], \"vendor\": \"Red Hat\", \"product\": \"Self-service automation portal 2\", \"defaultStatus\": \"affected\"}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2026-02-20T22:01:59.622Z\", \"value\": \"Reported to Red Hat.\"}, {\"lang\": \"en\", \"time\": \"2026-02-20T20:57:48.074Z\", \"value\": \"Made public.\"}], \"solutions\": [{\"lang\": \"en\", \"value\": \"RHSA-2026:7110: Red Hat Advanced Cluster Security for Kubernetes 4.8\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:7128: Red Hat Advanced Cluster Security for Kubernetes 4.9\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:6174: Red Hat Developer Hub 1.8\"}, {\"lang\": \"en\", \"value\": \"RHSA-2026:6802: Red Hat Developer Hub 1.9\"}], \"x_adpType\": \"supplier\", \"datePublic\": \"2026-02-20T20:57:48.074Z\", \"references\": [{\"url\": \"https://access.redhat.com/security/cve/CVE-2026-25896\", \"tags\": [\"vdb-entry\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2441501\", \"name\": \"RHBZ#2441501\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-25896.json\", \"tags\": [\"x_sadp-csaf-vex\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:7110\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:7128\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:6174\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2026:6802\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}], \"workarounds\": [{\"lang\": \"en\", \"value\": \"Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.\"}], \"x_generator\": {\"engine\": \"sadp-cli 1.0.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"A flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by providing a specially crafted XML input. The system incorrectly interprets a dot in a DOCTYPE entity name as a regular expression wildcard during processing. This allows the attacker to bypass security measures and inject malicious scripts, resulting in Cross-Site Scripting (XSS) when the parsed output is displayed to users.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-79\", \"description\": \"Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)\"}]}], \"providerMetadata\": {\"orgId\": \"0b0ca135-0b70-47e7-9f44-1890c2a1c46c\", \"shortName\": \"redhat-SADP\", \"dateUpdated\": \"2026-06-30T02:43:11.905Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-25896\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"poc\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-02-23T19:26:46.154155Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-02-23T19:27:50.880Z\"}}], \"cna\": {\"title\": \"fast-xml-parser has an entity encoding bypass via regex injection in DOCTYPE entity names\", \"source\": {\"advisory\": \"GHSA-m7jm-9gc2-mpf2\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"CHANGED\", \"version\": \"3.1\", \"baseScore\": 9.3, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"CRITICAL\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:H/A:N\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"LOW\"}}], \"affected\": [{\"vendor\": \"NaturalIntelligence\", \"product\": \"fast-xml-parser\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003e= 5.0.0, \u003c 5.3.5\"}, {\"status\": \"affected\", \"version\": \"\u003e= 4.1.3, \u003c 4.5.4\"}]}], \"references\": [{\"url\": \"https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-m7jm-9gc2-mpf2\", \"name\": \"https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-m7jm-9gc2-mpf2\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://github.com/NaturalIntelligence/fast-xml-parser/commit/943ef0eb1b2d3284e72dd74f44a042ee9f07026e\", \"name\": \"https://github.com/NaturalIntelligence/fast-xml-parser/commit/943ef0eb1b2d3284e72dd74f44a042ee9f07026e\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/NaturalIntelligence/fast-xml-parser/commit/ddcd0acf26ddd682cb0dc15a2bd6aa3b96bb1e69\", \"name\": \"https://github.com/NaturalIntelligence/fast-xml-parser/commit/ddcd0acf26ddd682cb0dc15a2bd6aa3b96bb1e69\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.5\", \"name\": \"https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.5\", \"tags\": [\"x_refsource_MISC\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"fast-xml-parser allows users to validate XML, parse XML to JS object, or build XML from JS object without C/C++ based libraries and no callback. From 4.1.3to before 5.3.5, a dot (.) in a DOCTYPE entity name is treated as a regex wildcard during entity replacement, allowing an attacker to shadow built-in XML entities (\u0026lt;, \u0026gt;, \u0026amp;, \u0026quot;, \u0026apos;) with arbitrary values. This bypasses entity encoding and leads to XSS when parsed output is rendered. This vulnerability is fixed in 5.3.5.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-185\", \"description\": \"CWE-185: Incorrect Regular Expression\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2026-03-02T19:11:31.673Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2026-25896\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-06-30T02:43:11.905Z\", \"dateReserved\": \"2026-02-06T21:08:39.130Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2026-02-20T20:57:48.074Z\", \"assignerShortName\": \"GitHub_M\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
RHSA-2026:6802
Vulnerability from csaf_redhat - Published: 2026-04-07 13:22 - Updated: 2026-06-30 08:57Summary
Red Hat Security Advisory: Red Hat Developer Hub 1.9.3 release.
Severity
Important
Notes
Topic: Red Hat Developer Hub 1.9.3 has been released.
Details: Red Hat Developer Hub (RHDH) is Red Hat's enterprise-grade, self-managed, customizable developer portal based on Backstage.io. RHDH is supported on OpenShift and other major Kubernetes clusters (AKS, EKS, GKE). The core features of RHDH include a single pane of glass, a centralized software catalog, self-service via golden path templates, and Tech Docs. RHDH is extensible by plugins.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in jsonpath. The `value` function is vulnerable to Prototype Pollution, a type of vulnerability that allows an attacker to inject or modify properties of an object's prototype. This can lead to various impacts, including arbitrary code execution, privilege escalation, or denial of service (DoS).
8.8 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64 | — |
Vendor Fix
fix
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64 | — |
Threats
Impact
Important
A flaw was found in ajv. When the $data option is enabled, the value of the pattern keyword is passed directly to the JavaScript RegExp() constructor without sufficient validation. An attacker able to supply a malicious regular expression pattern can trigger a ReDoS (Regular Expression Denial of Service), causing the application to become unresponsive and resulting in a denial of service.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64 | — |
Workaround
|
Threats
Impact
Important
A flaw was found in the jsonpath component. This vulnerability allows a remote attacker to achieve arbitrary code execution by supplying a malicious JSON Path expression. The component's reliance on the `static-eval` module for processing user-supplied input leads to unsafe evaluation. Successful exploitation can result in Remote Code Execution (RCE) in Node.js environments or Cross-site Scripting (XSS) in browser contexts.
9.8 (Critical)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64 | — |
Workaround
|
Threats
Impact
Important
A flaw was found in Multer, a Node.js middleware for handling `multipart/form-data`. A remote attacker can exploit this vulnerability by intentionally dropping a connection during a file upload. This can lead to a Denial of Service (DoS) due to resource exhaustion on the affected system.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64 | — |
Vendor Fix
fix
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64 | — |
Threats
Impact
Important
A flaw was found in Multer, a Node.js middleware. A remote attacker could exploit this vulnerability by sending specially crafted malformed requests. This could lead to resource exhaustion, resulting in a Denial of Service (DoS) for the application using Multer.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64 | — |
Vendor Fix
fix
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64 | — |
Threats
Impact
Important
A denial of service flaw was found in Multer, a Node.js middleware for handling `multipart/form-data`. A remote attacker can send specially crafted malformed requests which may induce a stack overflow. This can lead to a Denial of Service (DoS) making the service unavailable.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64 | — |
Workaround
|
Threats
Impact
Important
A flaw was found in Backstage. A symlink-based path traversal issue can be exploited in multiple Scaffolder actions and archive extraction utilities during template execution via malicious symlinks. An attacker with access to create and execute Scaffolder templates can read sensitive files, delete arbitrary files or write files outside the intended workspace, resulting in unauthorized information disclosure or system compromise.
9.1 (Critical)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64 | — |
Workaround
|
Threats
Impact
Important
A code injection flaw has been discovered in the npm @backstage/plugin-techdocs-node library. When TechDocs is configured with `runIn: local`, a malicious actor who can submit or modify a repository's `mkdocs.yml` file can execute arbitrary Python code on the TechDocs build server via MkDocs hooks configuration.
7.7 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64 | — |
Workaround
|
Threats
Impact
Important
A denial of service flaw has been discovered in the Axios npm package. the mergeConfig function in axios crashes with a TypeError when processing configuration objects containing __proto__ as an own property. An attacker can trigger this by providing a malicious configuration object created via JSON.parse(), causing complete denial of service.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64 | — |
Workaround
|
Threats
Impact
Important
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64 | — |
Workaround
|
Threats
Impact
Important
A flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by providing a specially crafted XML input. The system incorrectly interprets a dot in a DOCTYPE entity name as a regular expression wildcard during processing. This allows the attacker to bypass security measures and inject malicious scripts, resulting in Cross-Site Scripting (XSS) when the parsed output is displayed to users.
7.1 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64 | — |
Workaround
|
Threats
Impact
Important
A denial of service flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by providing a specially crafted, small XML input. This input can force the XML parser to perform an unlimited amount of entity expansion, consuming excessive resources. This can lead to the application freezing for an extended period, resulting in a Denial of Service (DoS).
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64 | — |
Workaround
|
Threats
Impact
Important
A flaw was found in Rollup, a JavaScript module bundler. Insecure file name sanitization in the core engine allows an attacker to control output filenames, potentially through command-line interface (CLI) inputs, manual chunk aliases, or malicious plugins. By using directory traversal sequences (`../`), an attacker can overwrite files anywhere on the host filesystem where the build process has write permissions. This vulnerability can lead to persistent remote code execution (RCE) by overwriting critical system or user configuration files.
9.1 (Critical)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64 | — |
Vendor Fix
fix
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64 | — |
Threats
Impact
Important
A flaw was found in fast-xml-parser. A user can exploit this flaw by processing specially crafted XML data with the XML builder when the `preserveOrder` option is enabled. This can lead to a stack overflow, causing the application to crash and resulting in a Denial of Service (DoS).
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64 | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.
9.1 (Critical)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64 | — |
Workaround
|
Threats
Impact
Important
References
123 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Developer Hub 1.9.3 has been released.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Developer Hub (RHDH) is Red Hat\u0027s enterprise-grade, self-managed, customizable developer portal based on Backstage.io. RHDH is supported on OpenShift and other major Kubernetes clusters (AKS, EKS, GKE). The core features of RHDH include a single pane of glass, a centralized software catalog, self-service via golden path templates, and Tech Docs. RHDH is extensible by plugins.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:6802",
"url": "https://access.redhat.com/errata/RHSA-2026:6802"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61140",
"url": "https://access.redhat.com/security/cve/CVE-2025-61140"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-69873",
"url": "https://access.redhat.com/security/cve/CVE-2025-69873"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-1615",
"url": "https://access.redhat.com/security/cve/CVE-2026-1615"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-2359",
"url": "https://access.redhat.com/security/cve/CVE-2026-2359"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-24046",
"url": "https://access.redhat.com/security/cve/CVE-2026-24046"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25153",
"url": "https://access.redhat.com/security/cve/CVE-2026-25153"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25639",
"url": "https://access.redhat.com/security/cve/CVE-2026-25639"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25679",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25896",
"url": "https://access.redhat.com/security/cve/CVE-2026-25896"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-26278",
"url": "https://access.redhat.com/security/cve/CVE-2026-26278"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27606",
"url": "https://access.redhat.com/security/cve/CVE-2026-27606"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27942",
"url": "https://access.redhat.com/security/cve/CVE-2026-27942"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-3304",
"url": "https://access.redhat.com/security/cve/CVE-2026-3304"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33186",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-3520",
"url": "https://access.redhat.com/security/cve/CVE-2026-3520"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://catalog.redhat.com/search?gs\u0026searchType=containers\u0026q=rhdh",
"url": "https://catalog.redhat.com/search?gs\u0026searchType=containers\u0026q=rhdh"
},
{
"category": "external",
"summary": "https://developers.redhat.com/rhdh/overview",
"url": "https://developers.redhat.com/rhdh/overview"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_developer_hub",
"url": "https://docs.redhat.com/en/documentation/red_hat_developer_hub"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/RHDHBUGS-2736",
"url": "https://issues.redhat.com/browse/RHDHBUGS-2736"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_6802.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Developer Hub 1.9.3 release.",
"tracking": {
"current_release_date": "2026-06-30T08:57:37+00:00",
"generator": {
"date": "2026-06-30T08:57:37+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.0"
}
},
"id": "RHSA-2026:6802",
"initial_release_date": "2026-04-07T13:22:11+00:00",
"revision_history": [
{
"date": "2026-04-07T13:22:11+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-07T13:22:17+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-30T08:57:37+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Developer Hub 1.9",
"product": {
"name": "Red Hat Developer Hub 1.9",
"product_id": "Red Hat Developer Hub 1.9",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhdh:1.9::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Developer Hub"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"product": {
"name": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"product_id": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-hub-rhel9@sha256%3A5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d?arch=amd64\u0026repository_url=registry.redhat.io/rhdh\u0026tag=1775140647"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64",
"product": {
"name": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64",
"product_id": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-rhel9-operator@sha256%3A4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef?arch=amd64\u0026repository_url=registry.redhat.io/rhdh\u0026tag=1775140369"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"product": {
"name": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"product_id": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-operator-bundle@sha256%3A6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa?arch=amd64\u0026repository_url=registry.redhat.io/rhdh\u0026tag=1775155242"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64 as a component of Red Hat Developer Hub 1.9",
"product_id": "Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64"
},
"product_reference": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"relates_to_product_reference": "Red Hat Developer Hub 1.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64 as a component of Red Hat Developer Hub 1.9",
"product_id": "Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64"
},
"product_reference": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"relates_to_product_reference": "Red Hat Developer Hub 1.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64 as a component of Red Hat Developer Hub 1.9",
"product_id": "Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
},
"product_reference": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64",
"relates_to_product_reference": "Red Hat Developer Hub 1.9"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61140",
"cwe": {
"id": "CWE-502",
"name": "Deserialization of Untrusted Data"
},
"discovery_date": "2026-01-28T17:00:46.678419+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2433946"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in jsonpath. The `value` function is vulnerable to Prototype Pollution, a type of vulnerability that allows an attacker to inject or modify properties of an object\u0027s prototype. This can lead to various impacts, including arbitrary code execution, privilege escalation, or denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jsonpath: jsonpath: Prototype Pollution vulnerability in the value function",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61140"
},
{
"category": "external",
"summary": "RHBZ#2433946",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2433946"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61140",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61140"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61140",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61140"
},
{
"category": "external",
"summary": "https://gist.github.com/Dremig/8105c189774217222a8ebea3ed4d341d",
"url": "https://gist.github.com/Dremig/8105c189774217222a8ebea3ed4d341d"
},
{
"category": "external",
"summary": "https://github.com/dchester/jsonpath",
"url": "https://github.com/dchester/jsonpath"
}
],
"release_date": "2026-01-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-07T13:22:11+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:6802"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "jsonpath: jsonpath: Prototype Pollution vulnerability in the value function"
},
{
"cve": "CVE-2025-69873",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2026-02-11T19:01:32.953264+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2439070"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ajv. When the $data option is enabled, the value of the pattern keyword is passed directly to the JavaScript RegExp() constructor without sufficient validation. An attacker able to supply a malicious regular expression pattern can trigger a ReDoS (Regular Expression Denial of Service), causing the application to become unresponsive and resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ajv: ReDoS via $data reference",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, the $data option must be enabled and the attacker needs to be able to send a payload with a specially crafted regular expression to the application processing the input. A 31-character payload causes approximately 44 seconds of execution, with each additional character doubling the execution time. Therefore, even a small payload can cause an application to become unresponsive and eventually result in a denial of service. Due to this reason, this flaw has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-69873"
},
{
"category": "external",
"summary": "RHBZ#2439070",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2439070"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-69873",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-69873"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-69873",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-69873"
},
{
"category": "external",
"summary": "https://github.com/EthanKim88/ethan-cve-disclosures/blob/main/CVE-2025-69873-ajv-ReDoS.md",
"url": "https://github.com/EthanKim88/ethan-cve-disclosures/blob/main/CVE-2025-69873-ajv-ReDoS.md"
}
],
"release_date": "2026-02-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-07T13:22:11+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:6802"
},
{
"category": "workaround",
"details": "To mitigate this issue, disable the $data feature if your application does not require it. If $data must be used, implement strict validation of the input fields that are referenced by the pattern keyword to ensure they contain only expected and safe characters.",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "ajv: ReDoS via $data reference"
},
{
"cve": "CVE-2026-1615",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"discovery_date": "2026-02-09T11:10:57.572082+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437875"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the jsonpath component. This vulnerability allows a remote attacker to achieve arbitrary code execution by supplying a malicious JSON Path expression. The component\u0027s reliance on the `static-eval` module for processing user-supplied input leads to unsafe evaluation. Successful exploitation can result in Remote Code Execution (RCE) in Node.js environments or Cross-site Scripting (XSS) in browser contexts.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jsonpath: jsonpath: Arbitrary Code Execution via unsafe JSON Path expression evaluation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Product Security team has rated this vulnerability as Important as it may allows arbitrary code execution when processing untrusted JSON Path expressions. This can lead to Remote Code Execution in Node.js environments or Cross-site Scripting in browser contexts. In some contexts it may be possible to remotely exploit this flaw without any privileges. However, within Red Hat products the jsonpath component is used as a transitive dependency or does not directly handle user input. This context reduces exposure and criticality of this vulnerability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-1615"
},
{
"category": "external",
"summary": "RHBZ#2437875",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437875"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-1615",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-1615"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-1615",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-1615"
},
{
"category": "external",
"summary": "https://github.com/dchester/jsonpath/blob/c1dd8ec74034fb0375233abb5fdbec51ac317b4b/lib/handlers.js%23L243",
"url": "https://github.com/dchester/jsonpath/blob/c1dd8ec74034fb0375233abb5fdbec51ac317b4b/lib/handlers.js%23L243"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-15141219",
"url": "https://security.snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-15141219"
},
{
"category": "external",
"summary": "https://security.snyk.io/vuln/SNYK-JS-JSONPATH-13645034",
"url": "https://security.snyk.io/vuln/SNYK-JS-JSONPATH-13645034"
}
],
"release_date": "2026-02-09T05:00:09.050000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-07T13:22:11+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:6802"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "jsonpath: jsonpath: Arbitrary Code Execution via unsafe JSON Path expression evaluation"
},
{
"cve": "CVE-2026-2359",
"cwe": {
"id": "CWE-772",
"name": "Missing Release of Resource after Effective Lifetime"
},
"discovery_date": "2026-02-27T16:01:27.340094+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2443350"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Multer, a Node.js middleware for handling `multipart/form-data`. A remote attacker can exploit this vulnerability by intentionally dropping a connection during a file upload. This can lead to a Denial of Service (DoS) due to resource exhaustion on the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "multer: Multer: Denial of Service via dropped file upload connections",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-2359"
},
{
"category": "external",
"summary": "RHBZ#2443350",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2443350"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-2359",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-2359"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-2359",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-2359"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
},
{
"category": "external",
"summary": "https://github.com/expressjs/multer/commit/cccf0fe0e64150c4f42ccf6654165c0d66b9adab",
"url": "https://github.com/expressjs/multer/commit/cccf0fe0e64150c4f42ccf6654165c0d66b9adab"
},
{
"category": "external",
"summary": "https://github.com/expressjs/multer/security/advisories/GHSA-v52c-386h-88mc",
"url": "https://github.com/expressjs/multer/security/advisories/GHSA-v52c-386h-88mc"
}
],
"release_date": "2026-02-27T15:42:08.088000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-07T13:22:11+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:6802"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "multer: Multer: Denial of Service via dropped file upload connections"
},
{
"cve": "CVE-2026-3304",
"cwe": {
"id": "CWE-459",
"name": "Incomplete Cleanup"
},
"discovery_date": "2026-02-27T16:01:39.674165+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2443353"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Multer, a Node.js middleware. A remote attacker could exploit this vulnerability by sending specially crafted malformed requests. This could lead to resource exhaustion, resulting in a Denial of Service (DoS) for the application using Multer.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "multer: Multer: Denial of Service via malformed requests",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-3304"
},
{
"category": "external",
"summary": "RHBZ#2443353",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2443353"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-3304",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-3304"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-3304",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-3304"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
},
{
"category": "external",
"summary": "https://github.com/expressjs/multer/commit/739919097dde3921ec31b930e4b9025036fa74ee",
"url": "https://github.com/expressjs/multer/commit/739919097dde3921ec31b930e4b9025036fa74ee"
},
{
"category": "external",
"summary": "https://github.com/expressjs/multer/security/advisories/GHSA-xf7r-hgr6-v32p",
"url": "https://github.com/expressjs/multer/security/advisories/GHSA-xf7r-hgr6-v32p"
}
],
"release_date": "2026-02-27T15:44:37.187000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-07T13:22:11+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:6802"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "multer: Multer: Denial of Service via malformed requests"
},
{
"cve": "CVE-2026-3520",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-03-04T17:01:43.432970+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2444584"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service flaw was found in Multer, a Node.js middleware for handling `multipart/form-data`. A remote attacker can send specially crafted malformed requests which may induce a stack overflow. This can lead to a Denial of Service (DoS) making the service unavailable.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "multer: Multer: Denial of Service via malformed requests",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-3520"
},
{
"category": "external",
"summary": "RHBZ#2444584",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2444584"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-3520",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-3520"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-3520",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-3520"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
},
{
"category": "external",
"summary": "https://github.com/expressjs/multer/commit/7e66481f8b2e6c54b982b34c152479e096ce2752",
"url": "https://github.com/expressjs/multer/commit/7e66481f8b2e6c54b982b34c152479e096ce2752"
},
{
"category": "external",
"summary": "https://github.com/expressjs/multer/security/advisories/GHSA-5528-5vmv-3xc2",
"url": "https://github.com/expressjs/multer/security/advisories/GHSA-5528-5vmv-3xc2"
}
],
"release_date": "2026-03-04T16:17:18.962000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-07T13:22:11+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:6802"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "multer: Multer: Denial of Service via malformed requests"
},
{
"cve": "CVE-2026-24046",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2026-01-21T23:00:53.856026+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2431878"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Backstage. A symlink-based path traversal issue can be exploited in multiple Scaffolder actions and archive extraction utilities during template execution via malicious symlinks. An attacker with access to create and execute Scaffolder templates can read sensitive files, delete arbitrary files or write files outside the intended workspace, resulting in unauthorized information disclosure or system compromise.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "backstage/backend-defaults: backstage/plugin-scaffolder-backend: backstage/plugin-scaffolder-node: possible symlink path traversal in scaffolder actions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, an attacker needs to have access to create and execute Scaffolder actions, specifically the debug:log, fs:delete actions and archive extractions, limiting the exposure of this flaw. Additionally, file systems operations are constrained by the permissions of the process, limiting the impact to files that can be accessed by Backstage. Due to these reasons, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-24046"
},
{
"category": "external",
"summary": "RHBZ#2431878",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2431878"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-24046",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-24046"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-24046",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-24046"
},
{
"category": "external",
"summary": "https://github.com/backstage/backstage/commit/c641c147ab371a9a8a2f5f67fdb7cb9c97ef345d",
"url": "https://github.com/backstage/backstage/commit/c641c147ab371a9a8a2f5f67fdb7cb9c97ef345d"
},
{
"category": "external",
"summary": "https://github.com/backstage/backstage/security/advisories/GHSA-rq6q-wr2q-7pgp",
"url": "https://github.com/backstage/backstage/security/advisories/GHSA-rq6q-wr2q-7pgp"
}
],
"release_date": "2026-01-21T22:36:30.794000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-07T13:22:11+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:6802"
},
{
"category": "workaround",
"details": "To mitigate this issue, consider implementing strict access controls for Backstage Scaffolder templates. Restrict the ability to create and execute Scaffolder templates to trusted users only, utilizing the Backstage permissions framework. Additionally, audit existing templates for any symlink usage and consider running Backstage within a containerized environment with a highly restricted filesystem to limit potential impact.",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "backstage/backend-defaults: backstage/plugin-scaffolder-backend: backstage/plugin-scaffolder-node: possible symlink path traversal in scaffolder actions"
},
{
"cve": "CVE-2026-25153",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"discovery_date": "2026-01-30T22:00:57.084320+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2435576"
}
],
"notes": [
{
"category": "description",
"text": "A code injection flaw has been discovered in the npm @backstage/plugin-techdocs-node library. When TechDocs is configured with `runIn: local`, a malicious actor who can submit or modify a repository\u0027s `mkdocs.yml` file can execute arbitrary Python code on the TechDocs build server via MkDocs hooks configuration.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "@backstage/plugin-techdocs-node: @backstage/plugin-techdocs-node vulnerable to arbitrary code execution via MkDocs hooks",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25153"
},
{
"category": "external",
"summary": "RHBZ#2435576",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2435576"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25153",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25153"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25153",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25153"
},
{
"category": "external",
"summary": "https://github.com/backstage/backstage/security/advisories/GHSA-6jr7-99pf-8vgf",
"url": "https://github.com/backstage/backstage/security/advisories/GHSA-6jr7-99pf-8vgf"
}
],
"release_date": "2026-01-30T21:31:58.870000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-07T13:22:11+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:6802"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "@backstage/plugin-techdocs-node: @backstage/plugin-techdocs-node vulnerable to arbitrary code execution via MkDocs hooks"
},
{
"cve": "CVE-2026-25639",
"cwe": {
"id": "CWE-1287",
"name": "Improper Validation of Specified Type of Input"
},
"discovery_date": "2026-02-09T21:00:49.280114+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2438237"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service flaw has been discovered in the Axios npm package. the mergeConfig function in axios crashes with a TypeError when processing configuration objects containing __proto__ as an own property. An attacker can trigger this by providing a malicious configuration object created via JSON.parse(), causing complete denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios affected by Denial of Service via __proto__ Key in mergeConfig",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25639"
},
{
"category": "external",
"summary": "RHBZ#2438237",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2438237"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25639",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25639"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25639",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25639"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/commit/28c721588c7a77e7503d0a434e016f852c597b57",
"url": "https://github.com/axios/axios/commit/28c721588c7a77e7503d0a434e016f852c597b57"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/releases/tag/v1.13.5",
"url": "https://github.com/axios/axios/releases/tag/v1.13.5"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-43fc-jf86-j433",
"url": "https://github.com/axios/axios/security/advisories/GHSA-43fc-jf86-j433"
}
],
"release_date": "2026-02-09T20:11:22.374000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-07T13:22:11+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:6802"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios affected by Denial of Service via __proto__ Key in mergeConfig"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-07T13:22:11+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:6802"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
},
{
"cve": "CVE-2026-25896",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2026-02-20T22:01:59.622413+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2441501"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by providing a specially crafted XML input. The system incorrectly interprets a dot in a DOCTYPE entity name as a regular expression wildcard during processing. This allows the attacker to bypass security measures and inject malicious scripts, resulting in Cross-Site Scripting (XSS) when the parsed output is displayed to users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: fast-xml-parser: Cross-Site Scripting (XSS) due to improper DOCTYPE entity handling",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw has been assessed as IMPORTANT for Red Hat products. This vulnerability arises when the parsed XML output is subsequently rendered to users which requires the interaction of the user. The impact of this flaw is also limited to the user\u0027s browser context.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25896"
},
{
"category": "external",
"summary": "RHBZ#2441501",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2441501"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25896",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25896"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25896",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25896"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/943ef0eb1b2d3284e72dd74f44a042ee9f07026e",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/943ef0eb1b2d3284e72dd74f44a042ee9f07026e"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/ddcd0acf26ddd682cb0dc15a2bd6aa3b96bb1e69",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/ddcd0acf26ddd682cb0dc15a2bd6aa3b96bb1e69"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.5",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.5"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-m7jm-9gc2-mpf2",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-m7jm-9gc2-mpf2"
}
],
"release_date": "2026-02-20T20:57:48.074000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-07T13:22:11+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:6802"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "fast-xml-parser: fast-xml-parser: Cross-Site Scripting (XSS) due to improper DOCTYPE entity handling"
},
{
"cve": "CVE-2026-26278",
"cwe": {
"id": "CWE-776",
"name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
},
"discovery_date": "2026-02-19T21:03:33.363864+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2441120"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by providing a specially crafted, small XML input. This input can force the XML parser to perform an unlimited amount of entity expansion, consuming excessive resources. This can lead to the application freezing for an extended period, resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: fast-xml-parser: Denial of Service via unlimited XML entity expansion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-26278"
},
{
"category": "external",
"summary": "RHBZ#2441120",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2441120"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-26278",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-26278"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-26278",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-26278"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/910dae5be2de2955e968558fadf6e8f74f117a77",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/910dae5be2de2955e968558fadf6e8f74f117a77"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.6",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.6"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-jmr7-xgp7-cmfj",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-jmr7-xgp7-cmfj"
}
],
"release_date": "2026-02-19T19:40:55.842000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-07T13:22:11+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:6802"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "fast-xml-parser: fast-xml-parser: Denial of Service via unlimited XML entity expansion"
},
{
"cve": "CVE-2026-27606",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2026-02-25T04:01:24.449922+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2442530"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Rollup, a JavaScript module bundler. Insecure file name sanitization in the core engine allows an attacker to control output filenames, potentially through command-line interface (CLI) inputs, manual chunk aliases, or malicious plugins. By using directory traversal sequences (`../`), an attacker can overwrite files anywhere on the host filesystem where the build process has write permissions. This vulnerability can lead to persistent remote code execution (RCE) by overwriting critical system or user configuration files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "rollup: Rollup: Remote Code Execution via Path Traversal Vulnerability",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27606"
},
{
"category": "external",
"summary": "RHBZ#2442530",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2442530"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27606",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27606"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27606",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27606"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/c60770d7aaf750e512c1b2774989ea4596e660b2",
"url": "https://github.com/rollup/rollup/commit/c60770d7aaf750e512c1b2774989ea4596e660b2"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/c8cf1f9c48c516285758c1e11f08a54f304fd44e",
"url": "https://github.com/rollup/rollup/commit/c8cf1f9c48c516285758c1e11f08a54f304fd44e"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/commit/d6dee5e99bb82aac0bee1df4ab9efbde455452c3",
"url": "https://github.com/rollup/rollup/commit/d6dee5e99bb82aac0bee1df4ab9efbde455452c3"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/releases/tag/v2.80.0",
"url": "https://github.com/rollup/rollup/releases/tag/v2.80.0"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/releases/tag/v3.30.0",
"url": "https://github.com/rollup/rollup/releases/tag/v3.30.0"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/releases/tag/v4.59.0",
"url": "https://github.com/rollup/rollup/releases/tag/v4.59.0"
},
{
"category": "external",
"summary": "https://github.com/rollup/rollup/security/advisories/GHSA-mw96-cpmx-2vgc",
"url": "https://github.com/rollup/rollup/security/advisories/GHSA-mw96-cpmx-2vgc"
}
],
"release_date": "2026-02-25T02:08:06.682000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-07T13:22:11+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:6802"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "rollup: Rollup: Remote Code Execution via Path Traversal Vulnerability"
},
{
"cve": "CVE-2026-27942",
"cwe": {
"id": "CWE-776",
"name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
},
"discovery_date": "2026-02-26T03:01:53.367202+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2442938"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in fast-xml-parser. A user can exploit this flaw by processing specially crafted XML data with the XML builder when the `preserveOrder` option is enabled. This can lead to a stack overflow, causing the application to crash and resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: fast-xml-parser: Stack overflow leads to Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The flaw affects the XML builder component of the fast-xml-parser library and is triggered only when the preserveOrder option is explicitly enabled. In Red Hat\u2013shipped configurations, this option is not enabled by default, and the vulnerable code path is therefore not exercised under typical deployments.\nThe underlying issue results in uncontrolled recursion leading to a stack overflow condition, which causes the application to terminate unexpectedly. While this can be triggered via crafted input, the impact is limited strictly to denial of service (DoS) and does not provide a mechanism for arbitrary code execution, privilege escalation, or data disclosure.\nFurthermore, exploitation requires that the affected application processes attacker-controlled XML input through the XML builder functionality with the specific vulnerable configuration enabled. This significantly reduces the attack surface and introduces environmental constraints not considered in the generalized NVD scoring.\n\nGiven the absence of confidentiality and integrity impact, the requirement for non-default configuration, and the limitation of the impact to process termination, Red Hat considers the practical risk to be lower than the NVD assessment. As such, this issue is classified as Moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27942"
},
{
"category": "external",
"summary": "RHBZ#2442938",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2442938"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27942",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27942"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27942",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27942"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/c13a961910f14986295dd28484eee830fa1a0e8a",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/c13a961910f14986295dd28484eee830fa1a0e8a"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/pull/791",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/pull/791"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-fj3w-jwp8-x2g3",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-fj3w-jwp8-x2g3"
}
],
"release_date": "2026-02-26T01:22:11.383000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-07T13:22:11+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:6802"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, configure applications using the `fast-xml-parser` XML builder to set the `preserveOrder` option to `false`. Alternatively, ensure that all XML input data is thoroughly validated before being passed to the builder to prevent the processing of malicious or malformed content.",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "fast-xml-parser: fast-xml-parser: Stack overflow leads to Denial of Service"
},
{
"cve": "CVE-2026-33186",
"cwe": {
"id": "CWE-551",
"name": "Incorrect Behavior Order: Authorization Before Parsing and Canonicalization"
},
"discovery_date": "2026-03-20T23:02:27.802640+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2449833"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "RHBZ#2449833",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33186",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33186"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3",
"url": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3"
}
],
"release_date": "2026-03-20T22:23:32.147000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-07T13:22:11+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:6802"
},
{
"category": "workaround",
"details": "To mitigate this issue, implement infrastructure-level normalization to ensure all incoming HTTP/2 `:path` headers are properly formatted with a leading slash before reaching the gRPC-Go server. This can be achieved by configuring a reverse proxy or API gateway to validate and normalize the `:path` header. Ensure that any such intermediary is properly configured and restarted to apply the changes, which may temporarily impact service availability.",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:5e564d74dd0a96027d9283991bda32a13b87384a9c9572456ce318dfac7e9f7d_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:6d52fc14afcaa18b7a09607fcdc34edf3b222030aa69cc91612a38191aca41aa_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:4e4ab9dd3243274e6f378553e241ae8b9fdeed7fe2daaa7efb34f60ee46a2eef_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation"
}
]
}
RHSA-2026:7110
Vulnerability from csaf_redhat - Published: 2026-04-08 16:37 - Updated: 2026-06-30 08:57Summary
Red Hat Security Advisory: RHACS 4.8.10 security and bug fix update
Severity
Important
Notes
Topic: Updated images are now available for Red Hat Advanced Cluster Security
(RHACS), which typically include new features, bug fixes, and/or
security patches.
Details: See the release notes (link in the references section) for a
description of the fixes and enhancements in this particular release.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A denial of service flaw has been discovered in the fast-xml-parser npm library. In fast-xml-parser, a RangeError vulnerability exists in the numeric entity processing of fast-xml-parser when parsing XML with out-of-range entity code points (e.g., `�` or `�`). This causes the parser to throw an uncaught exception, crashing any application that processes untrusted XML input.
5.3 (Medium)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in jsPDF. The addImage and html methods accept user input in their first argument without proper sanitization. An attacker can supply a specially crafted GIF file, specifically with invalid width and height header values, forcing the application to allocate an excessive amount of memory, leading to an out-of-memory condition, causing an application crash and denial of service.
7.5 (High)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x | — |
Workaround
|
Threats
Impact
Important
A flaw was found in jsPDF. The addJS method accepts user input without proper sanitization, allowing an attacker to inject arbitrary PDF objects into the document. A specially crafted payload that escapes the JavaScript string delimiter can execute malicious actions or alter the document structure, resulting in arbitrary code execution when a user opens a PDF with a viewer that supports embedded scripts.
9.6 (Critical)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x | — |
Workaround
|
Threats
Impact
Important
A flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by providing a specially crafted XML input. The system incorrectly interprets a dot in a DOCTYPE entity name as a regular expression wildcard during processing. This allows the attacker to bypass security measures and inject malicious scripts, resulting in Cross-Site Scripting (XSS) when the parsed output is displayed to users.
7.1 (High)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x | — |
Workaround
|
Threats
Impact
Important
A flaw was found in jsPDF. The properties and methods of the Acroform module accept user input without sanitization, allowing an attacker to inject arbitrary PDF objects, such as JavaScript actions. Specifically, if an attacker can supply a specially crafted input to the AcroformChildClass.appearanceState property, JavaScript actions can be executed when a user opens the generated PDF document and hovers over the radio button.
9.6 (Critical)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x | — |
Workaround
|
Threats
Impact
Important
A denial of service flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by providing a specially crafted, small XML input. This input can force the XML parser to perform an unlimited amount of entity expansion, consuming excessive resources. This can lead to the application freezing for an extended period, resulting in a Denial of Service (DoS).
7.5 (High)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x | — |
Workaround
|
Threats
Impact
Important
A flaw was found in fast-xml-parser. A user can exploit this flaw by processing specially crafted XML data with the XML builder when the `preserveOrder` option is enabled. This can lead to a stack overflow, causing the application to crash and resulting in a Denial of Service (DoS).
7.5 (High)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in SVGO, an SVG (Scalable Vector Graphics) Optimizer. This vulnerability allows a remote attacker to cause a Denial of Service (DoS) by submitting a specially crafted XML file. The application's failure to properly guard against XML entity expansion or recursion can lead to the Node.js process consuming excessive memory and crashing.
7.5 (High)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x | — |
Workaround
|
Threats
Impact
Important
A flaw was found in jsPDF, a JavaScript library used for generating PDF documents. This vulnerability allows a remote attacker to inject arbitrary PDF objects, including JavaScript actions, into a generated PDF. This can occur if unsanitized user input is provided to the `createAnnotation` method's `color` parameter. When a user opens or interacts with the specially crafted PDF, these injected actions may execute, potentially leading to arbitrary code execution or sensitive information disclosure.
8.1 (High)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x | — |
Workaround
|
Threats
Impact
Important
A flaw was found in jsPDF, a JavaScript library for generating PDFs. A remote attacker can exploit this vulnerability by providing malicious input to the `options` argument of the `output` function. When a victim creates and opens a PDF using this unsanitized input, arbitrary HTML, including scripts, can be injected and executed within the victim's browser context. This Cross-Site Scripting (XSS) vulnerability allows the attacker to extract or modify sensitive information from the victim's browser.
8.1 (High)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x | — |
Workaround
|
Threats
Impact
Important
A flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by supplying specially crafted XML input containing numeric character references or standard XML entities. This input can bypass configured entity expansion limits, leading to excessive memory allocation and high CPU usage. The primary consequence is a Denial of Service (DoS), which can crash the affected process.
7.5 (High)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.
9.1 (Critical)
Affected products
Fixed
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x | — |
Vendor Fix
fix
Workaround
|
Known not affected
29 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64 | — |
Workaround
|
Threats
Impact
Important
References
97 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat Advanced Cluster Security\n(RHACS), which typically include new features, bug fixes, and/or\nsecurity patches.",
"title": "Topic"
},
{
"category": "general",
"text": "See the release notes (link in the references section) for a\ndescription of the fixes and enhancements in this particular release.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:7110",
"url": "https://access.redhat.com/errata/RHSA-2026:7110"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25128",
"url": "https://access.redhat.com/security/cve/CVE-2026-25128"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25535",
"url": "https://access.redhat.com/security/cve/CVE-2026-25535"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25755",
"url": "https://access.redhat.com/security/cve/CVE-2026-25755"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25896",
"url": "https://access.redhat.com/security/cve/CVE-2026-25896"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25940",
"url": "https://access.redhat.com/security/cve/CVE-2026-25940"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-26278",
"url": "https://access.redhat.com/security/cve/CVE-2026-26278"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27942",
"url": "https://access.redhat.com/security/cve/CVE-2026-27942"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-29074",
"url": "https://access.redhat.com/security/cve/CVE-2026-29074"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-31898",
"url": "https://access.redhat.com/security/cve/CVE-2026-31898"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-31938",
"url": "https://access.redhat.com/security/cve/CVE-2026-31938"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33036",
"url": "https://access.redhat.com/security/cve/CVE-2026-33036"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33186",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.8/html-single/release_notes/index#about-this-release-4810_release-notes-48",
"url": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.8/html-single/release_notes/index#about-this-release-4810_release-notes-48"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_7110.json"
}
],
"title": "Red Hat Security Advisory: RHACS 4.8.10 security and bug fix update",
"tracking": {
"current_release_date": "2026-06-30T08:57:37+00:00",
"generator": {
"date": "2026-06-30T08:57:37+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.0"
}
},
"id": "RHSA-2026:7110",
"initial_release_date": "2026-04-08T16:37:57+00:00",
"revision_history": [
{
"date": "2026-04-08T16:37:57+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-08T16:38:07+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-30T08:57:37+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product": {
"name": "Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:advanced_cluster_security:4.8::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Advanced Cluster Security for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3A8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256%3Ac0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774163438"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256%3A5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256%3A4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256%3A66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3A9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3Ae5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3Abe836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3A62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3Adb5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3A579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3Abe770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3A9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256%3Aaede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774163438"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256%3Ad9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256%3Ac6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3A4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3A5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3Af717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3A4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3A3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3A95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3A2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3Acb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256%3A0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774163438"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256%3A8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256%3A5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3A07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3A9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3A4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3Ab774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3Aeba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3A6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3A1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3A72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256%3A16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774163438"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256%3Ac7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256%3A81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3A2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3A16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3A2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3A3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3A2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3Ae9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3A714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-25128",
"cwe": {
"id": "CWE-248",
"name": "Uncaught Exception"
},
"discovery_date": "2026-01-30T16:01:27.320561+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2435497"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service flaw has been discovered in the fast-xml-parser npm library. In fast-xml-parser, a RangeError vulnerability exists in the numeric entity processing of fast-xml-parser when parsing XML with out-of-range entity code points (e.g., `\u0026#9999999;` or `\u0026#xFFFFFF;`). This causes the parser to throw an uncaught exception, crashing any application that processes untrusted XML input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: fast-xml-parser has RangeError DoS Numeric Entities Bug",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The availability impact of this flaw is limited to the application which bundles the fast-xml-parser library. Red Hat host systems are not at risk of availability impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25128"
},
{
"category": "external",
"summary": "RHBZ#2435497",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2435497"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25128",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25128"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25128",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25128"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/4e387f61c4a5cef792f6a2f42467013290bf95dc",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/4e387f61c4a5cef792f6a2f42467013290bf95dc"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.4",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.4"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-37qj-frw5-hhjh",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-37qj-frw5-hhjh"
}
],
"release_date": "2026-01-30T15:14:58.244000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T16:37:57+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7110"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "fast-xml-parser: fast-xml-parser has RangeError DoS Numeric Entities Bug"
},
{
"cve": "CVE-2026-25535",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-02-19T15:01:17.455095+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2440992"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in jsPDF. The addImage and html methods accept user input in their first argument without proper sanitization. An attacker can supply a specially crafted GIF file, specifically with invalid width and height header values, forcing the application to allocate an excessive amount of memory, leading to an out-of-memory condition, causing an application crash and denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jsPDF: denial of service via malicious GIF dimensions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to process a specially crafted GIF file with an application using the addImage or html methods. This issue can cause the application to allocate an excessive amount of memory, eventually resulting in a denial of service with no other security impact. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25535"
},
{
"category": "external",
"summary": "RHBZ#2440992",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2440992"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25535",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25535"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25535",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25535"
},
{
"category": "external",
"summary": "https://github.com/ZeroXJacks/CVEs/blob/main/2026/CVE-2026-25535.md",
"url": "https://github.com/ZeroXJacks/CVEs/blob/main/2026/CVE-2026-25535.md"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/commit/2e5e156e284d92c7d134bce97e6418756941d5e6",
"url": "https://github.com/parallax/jsPDF/commit/2e5e156e284d92c7d134bce97e6418756941d5e6"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/releases/tag/v4.2.0",
"url": "https://github.com/parallax/jsPDF/releases/tag/v4.2.0"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/security/advisories/GHSA-67pg-wm7f-q7fj",
"url": "https://github.com/parallax/jsPDF/security/advisories/GHSA-67pg-wm7f-q7fj"
}
],
"release_date": "2026-02-19T14:34:05.648000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T16:37:57+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7110"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, sanitize image data or validate resources fetched from URLs before calling the addImage or html methods, making sure that the width and height header values do not exceed safe and predefined limits.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "jsPDF: denial of service via malicious GIF dimensions"
},
{
"cve": "CVE-2026-25755",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"discovery_date": "2026-02-19T15:01:21.761677+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2440993"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in jsPDF. The addJS method accepts user input without proper sanitization, allowing an attacker to inject arbitrary PDF objects into the document. A specially crafted payload that escapes the JavaScript string delimiter can execute malicious actions or alter the document structure, resulting in arbitrary code execution when a user opens a PDF with a viewer that supports embedded scripts.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jsPDF: PDF object injection via unsanitized input in addJS method",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to supply a specially crafted payload to the application using the addJS method and convince a user to open the generated PDF document with a viewer that supports embedded scripts. Due to these reasons, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25755"
},
{
"category": "external",
"summary": "RHBZ#2440993",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2440993"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25755",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25755"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25755",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25755"
},
{
"category": "external",
"summary": "https://github.com/ZeroXJacks/CVEs/blob/main/2026/CVE-2026-25755.md",
"url": "https://github.com/ZeroXJacks/CVEs/blob/main/2026/CVE-2026-25755.md"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/commit/56b46d45b052346f5995b005a34af5dcdddd5437",
"url": "https://github.com/parallax/jsPDF/commit/56b46d45b052346f5995b005a34af5dcdddd5437"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/releases/tag/v4.2.0",
"url": "https://github.com/parallax/jsPDF/releases/tag/v4.2.0"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/security/advisories/GHSA-9vjf-qc39-jprp",
"url": "https://github.com/parallax/jsPDF/security/advisories/GHSA-9vjf-qc39-jprp"
}
],
"release_date": "2026-02-19T14:41:46.941000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T16:37:57+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7110"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, sanitize the user-provided JavaScript code before passing it to the addJS method by strictly escaping backslashes and parentheses. Additionally, do not open PDF documents from untrusted sources.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.6,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "jsPDF: PDF object injection via unsanitized input in addJS method"
},
{
"cve": "CVE-2026-25896",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2026-02-20T22:01:59.622413+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2441501"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by providing a specially crafted XML input. The system incorrectly interprets a dot in a DOCTYPE entity name as a regular expression wildcard during processing. This allows the attacker to bypass security measures and inject malicious scripts, resulting in Cross-Site Scripting (XSS) when the parsed output is displayed to users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: fast-xml-parser: Cross-Site Scripting (XSS) due to improper DOCTYPE entity handling",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw has been assessed as IMPORTANT for Red Hat products. This vulnerability arises when the parsed XML output is subsequently rendered to users which requires the interaction of the user. The impact of this flaw is also limited to the user\u0027s browser context.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25896"
},
{
"category": "external",
"summary": "RHBZ#2441501",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2441501"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25896",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25896"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25896",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25896"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/943ef0eb1b2d3284e72dd74f44a042ee9f07026e",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/943ef0eb1b2d3284e72dd74f44a042ee9f07026e"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/ddcd0acf26ddd682cb0dc15a2bd6aa3b96bb1e69",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/ddcd0acf26ddd682cb0dc15a2bd6aa3b96bb1e69"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.5",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.5"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-m7jm-9gc2-mpf2",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-m7jm-9gc2-mpf2"
}
],
"release_date": "2026-02-20T20:57:48.074000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T16:37:57+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7110"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "fast-xml-parser: fast-xml-parser: Cross-Site Scripting (XSS) due to improper DOCTYPE entity handling"
},
{
"cve": "CVE-2026-25940",
"cwe": {
"id": "CWE-116",
"name": "Improper Encoding or Escaping of Output"
},
"discovery_date": "2026-02-19T16:04:06.757217+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2441016"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in jsPDF. The properties and methods of the Acroform module accept user input without sanitization, allowing an attacker to inject arbitrary PDF objects, such as JavaScript actions. Specifically, if an attacker can supply a specially crafted input to the AcroformChildClass.appearanceState property, JavaScript actions can be executed when a user opens the generated PDF document and hovers over the radio button.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jsPDF: PDF injection in AcroForm module allows arbitrary JavaScript execution (RadioButton children)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to supply a specially crafted input to the AcroformChildClass.appearanceState property of the Acroform module and convince a user to open the generated PDF document, resulting in arbitrary JavaScript execution when the user interacts with radio buttons. Due to these reasons, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25940"
},
{
"category": "external",
"summary": "RHBZ#2441016",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2441016"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25940",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25940"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25940",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25940"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/commit/71ad2dbfa6c7c189ab42b855b782620fa8a38375",
"url": "https://github.com/parallax/jsPDF/commit/71ad2dbfa6c7c189ab42b855b782620fa8a38375"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/releases/tag/v4.2.0",
"url": "https://github.com/parallax/jsPDF/releases/tag/v4.2.0"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/security/advisories/GHSA-p5xg-68wr-hm3m",
"url": "https://github.com/parallax/jsPDF/security/advisories/GHSA-p5xg-68wr-hm3m"
}
],
"release_date": "2026-02-19T15:26:57.645000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T16:37:57+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7110"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, sanitize the user-provided input before passing it to the AcroformChildClass.appearanceState property or other API members. Additionally, do not open PDF documents from untrusted sources.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.6,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "jsPDF: PDF injection in AcroForm module allows arbitrary JavaScript execution (RadioButton children)"
},
{
"cve": "CVE-2026-26278",
"cwe": {
"id": "CWE-776",
"name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
},
"discovery_date": "2026-02-19T21:03:33.363864+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2441120"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by providing a specially crafted, small XML input. This input can force the XML parser to perform an unlimited amount of entity expansion, consuming excessive resources. This can lead to the application freezing for an extended period, resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: fast-xml-parser: Denial of Service via unlimited XML entity expansion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-26278"
},
{
"category": "external",
"summary": "RHBZ#2441120",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2441120"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-26278",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-26278"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-26278",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-26278"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/910dae5be2de2955e968558fadf6e8f74f117a77",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/910dae5be2de2955e968558fadf6e8f74f117a77"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.6",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.6"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-jmr7-xgp7-cmfj",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-jmr7-xgp7-cmfj"
}
],
"release_date": "2026-02-19T19:40:55.842000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T16:37:57+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7110"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "fast-xml-parser: fast-xml-parser: Denial of Service via unlimited XML entity expansion"
},
{
"cve": "CVE-2026-27942",
"cwe": {
"id": "CWE-776",
"name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
},
"discovery_date": "2026-02-26T03:01:53.367202+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2442938"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in fast-xml-parser. A user can exploit this flaw by processing specially crafted XML data with the XML builder when the `preserveOrder` option is enabled. This can lead to a stack overflow, causing the application to crash and resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: fast-xml-parser: Stack overflow leads to Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The flaw affects the XML builder component of the fast-xml-parser library and is triggered only when the preserveOrder option is explicitly enabled. In Red Hat\u2013shipped configurations, this option is not enabled by default, and the vulnerable code path is therefore not exercised under typical deployments.\nThe underlying issue results in uncontrolled recursion leading to a stack overflow condition, which causes the application to terminate unexpectedly. While this can be triggered via crafted input, the impact is limited strictly to denial of service (DoS) and does not provide a mechanism for arbitrary code execution, privilege escalation, or data disclosure.\nFurthermore, exploitation requires that the affected application processes attacker-controlled XML input through the XML builder functionality with the specific vulnerable configuration enabled. This significantly reduces the attack surface and introduces environmental constraints not considered in the generalized NVD scoring.\n\nGiven the absence of confidentiality and integrity impact, the requirement for non-default configuration, and the limitation of the impact to process termination, Red Hat considers the practical risk to be lower than the NVD assessment. As such, this issue is classified as Moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27942"
},
{
"category": "external",
"summary": "RHBZ#2442938",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2442938"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27942",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27942"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27942",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27942"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/c13a961910f14986295dd28484eee830fa1a0e8a",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/c13a961910f14986295dd28484eee830fa1a0e8a"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/pull/791",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/pull/791"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-fj3w-jwp8-x2g3",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-fj3w-jwp8-x2g3"
}
],
"release_date": "2026-02-26T01:22:11.383000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T16:37:57+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7110"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, configure applications using the `fast-xml-parser` XML builder to set the `preserveOrder` option to `false`. Alternatively, ensure that all XML input data is thoroughly validated before being passed to the builder to prevent the processing of malicious or malformed content.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "fast-xml-parser: fast-xml-parser: Stack overflow leads to Denial of Service"
},
{
"cve": "CVE-2026-29074",
"cwe": {
"id": "CWE-776",
"name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
},
"discovery_date": "2026-03-06T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445132"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in SVGO, an SVG (Scalable Vector Graphics) Optimizer. This vulnerability allows a remote attacker to cause a Denial of Service (DoS) by submitting a specially crafted XML file. The application\u0027s failure to properly guard against XML entity expansion or recursion can lead to the Node.js process consuming excessive memory and crashing.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "svgo: SVGO: Denial of Service via XML entity expansion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-29074"
},
{
"category": "external",
"summary": "RHBZ#2445132",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445132"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-29074",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-29074"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-29074",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-29074"
},
{
"category": "external",
"summary": "https://github.com/svg/svgo/security/advisories/GHSA-xpqw-6gx7-v673",
"url": "https://github.com/svg/svgo/security/advisories/GHSA-xpqw-6gx7-v673"
}
],
"release_date": "2026-03-06T07:23:05.716000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T16:37:57+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7110"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "svgo: SVGO: Denial of Service via XML entity expansion"
},
{
"cve": "CVE-2026-31898",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"discovery_date": "2026-03-18T04:02:12.103945+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2448547"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in jsPDF, a JavaScript library used for generating PDF documents. This vulnerability allows a remote attacker to inject arbitrary PDF objects, including JavaScript actions, into a generated PDF. This can occur if unsanitized user input is provided to the `createAnnotation` method\u0027s `color` parameter. When a user opens or interacts with the specially crafted PDF, these injected actions may execute, potentially leading to arbitrary code execution or sensitive information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jspdf: jsPDF: Arbitrary code execution via unsanitized input in createAnnotation method",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-31898"
},
{
"category": "external",
"summary": "RHBZ#2448547",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2448547"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-31898",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-31898"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-31898",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-31898"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/blob/b1607a9391d4cd65ea7ade25998aea8345ae1be3/src/modules/annotations.js#L193-L208",
"url": "https://github.com/parallax/jsPDF/blob/b1607a9391d4cd65ea7ade25998aea8345ae1be3/src/modules/annotations.js#L193-L208"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/commit/4155c4819d5eca284168e51e0e1e81126b4f14b8",
"url": "https://github.com/parallax/jsPDF/commit/4155c4819d5eca284168e51e0e1e81126b4f14b8"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/releases/tag/v4.2.1",
"url": "https://github.com/parallax/jsPDF/releases/tag/v4.2.1"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/security/advisories/GHSA-7x6v-j9x4-qf24",
"url": "https://github.com/parallax/jsPDF/security/advisories/GHSA-7x6v-j9x4-qf24"
}
],
"release_date": "2026-03-18T03:03:43.469000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T16:37:57+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7110"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "jspdf: jsPDF: Arbitrary code execution via unsanitized input in createAnnotation method"
},
{
"cve": "CVE-2026-31938",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2026-03-18T04:02:27.320536+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2448550"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in jsPDF, a JavaScript library for generating PDFs. A remote attacker can exploit this vulnerability by providing malicious input to the `options` argument of the `output` function. When a victim creates and opens a PDF using this unsanitized input, arbitrary HTML, including scripts, can be injected and executed within the victim\u0027s browser context. This Cross-Site Scripting (XSS) vulnerability allows the attacker to extract or modify sensitive information from the victim\u0027s browser.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jspdf: jsPDF: Cross site scripting via unsanitized output options",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-31938"
},
{
"category": "external",
"summary": "RHBZ#2448550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2448550"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-31938",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-31938"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-31938",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-31938"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/commit/87a40bbd07e6b30575196370670b41f264aa78d7",
"url": "https://github.com/parallax/jsPDF/commit/87a40bbd07e6b30575196370670b41f264aa78d7"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/releases/tag/v4.2.1",
"url": "https://github.com/parallax/jsPDF/releases/tag/v4.2.1"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/security/advisories/GHSA-wfv2-pwc8-crg5",
"url": "https://github.com/parallax/jsPDF/security/advisories/GHSA-wfv2-pwc8-crg5"
}
],
"release_date": "2026-03-18T03:05:44.964000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T16:37:57+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7110"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "jspdf: jsPDF: Cross site scripting via unsanitized output options"
},
{
"cve": "CVE-2026-33036",
"cwe": {
"id": "CWE-776",
"name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
},
"discovery_date": "2026-03-20T06:02:18.306021+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2449458"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by supplying specially crafted XML input containing numeric character references or standard XML entities. This input can bypass configured entity expansion limits, leading to excessive memory allocation and high CPU usage. The primary consequence is a Denial of Service (DoS), which can crash the affected process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: fast-xml-parser: Denial of Service via XML entity expansion bypass",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33036"
},
{
"category": "external",
"summary": "RHBZ#2449458",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449458"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33036",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33036"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33036",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33036"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/bd26122c838e6a55e7d7ac49b4ccc01a49999a01",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/bd26122c838e6a55e7d7ac49b4ccc01a49999a01"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.5.6",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.5.6"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-8gc5-j5rx-235r",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-8gc5-j5rx-235r"
}
],
"release_date": "2026-03-20T05:17:03.290000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T16:37:57+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7110"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "fast-xml-parser: fast-xml-parser: Denial of Service via XML entity expansion bypass"
},
{
"cve": "CVE-2026-33186",
"cwe": {
"id": "CWE-551",
"name": "Incorrect Behavior Order: Authorization Before Parsing and Canonicalization"
},
"discovery_date": "2026-03-20T23:02:27.802640+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2449833"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "RHBZ#2449833",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33186",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33186"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3",
"url": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3"
}
],
"release_date": "2026-03-20T22:23:32.147000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T16:37:57+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7110"
},
{
"category": "workaround",
"details": "To mitigate this issue, implement infrastructure-level normalization to ensure all incoming HTTP/2 `:path` headers are properly formatted with a leading slash before reaching the gRPC-Go server. This can be achieved by configuring a reverse proxy or API gateway to validate and normalize the `:path` header. Ensure that any such intermediary is properly configured and restarted to apply the changes, which may temporarily impact service availability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation"
}
]
}
RHSA-2026:7128
Vulnerability from csaf_redhat - Published: 2026-04-08 17:43 - Updated: 2026-06-30 08:57Summary
Red Hat Security Advisory: RHACS 4.9.5 security and bug fix update
Severity
Important
Notes
Topic: Updated images are now available for Red Hat Advanced Cluster Security
(RHACS), which typically include new features, bug fixes, and/or
security patches.
Details: See the release notes (link in the references section) for a
description of the fixes and enhancements in this particular release.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A denial of service flaw has been discovered in the fast-xml-parser npm library. In fast-xml-parser, a RangeError vulnerability exists in the numeric entity processing of fast-xml-parser when parsing XML with out-of-range entity code points (e.g., `�` or `�`). This causes the parser to throw an uncaught exception, crashing any application that processes untrusted XML input.
5.3 (Medium)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x | — |
Vendor Fix
fix
Workaround
|
Known not affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64 | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in jsPDF. The addImage and html methods accept user input in their first argument without proper sanitization. An attacker can supply a specially crafted GIF file, specifically with invalid width and height header values, forcing the application to allocate an excessive amount of memory, leading to an out-of-memory condition, causing an application crash and denial of service.
7.5 (High)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x | — |
Vendor Fix
fix
Workaround
|
Known not affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64 | — |
Workaround
|
Threats
Impact
Important
A flaw was found in jsPDF. The addJS method accepts user input without proper sanitization, allowing an attacker to inject arbitrary PDF objects into the document. A specially crafted payload that escapes the JavaScript string delimiter can execute malicious actions or alter the document structure, resulting in arbitrary code execution when a user opens a PDF with a viewer that supports embedded scripts.
9.6 (Critical)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x | — |
Vendor Fix
fix
Workaround
|
Known not affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64 | — |
Workaround
|
Threats
Impact
Important
A flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by providing a specially crafted XML input. The system incorrectly interprets a dot in a DOCTYPE entity name as a regular expression wildcard during processing. This allows the attacker to bypass security measures and inject malicious scripts, resulting in Cross-Site Scripting (XSS) when the parsed output is displayed to users.
7.1 (High)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x | — |
Vendor Fix
fix
Workaround
|
Known not affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64 | — |
Workaround
|
Threats
Impact
Important
A flaw was found in jsPDF. The properties and methods of the Acroform module accept user input without sanitization, allowing an attacker to inject arbitrary PDF objects, such as JavaScript actions. Specifically, if an attacker can supply a specially crafted input to the AcroformChildClass.appearanceState property, JavaScript actions can be executed when a user opens the generated PDF document and hovers over the radio button.
9.6 (Critical)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x | — |
Vendor Fix
fix
Workaround
|
Known not affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64 | — |
Workaround
|
Threats
Impact
Important
A denial of service flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by providing a specially crafted, small XML input. This input can force the XML parser to perform an unlimited amount of entity expansion, consuming excessive resources. This can lead to the application freezing for an extended period, resulting in a Denial of Service (DoS).
7.5 (High)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x | — |
Vendor Fix
fix
Workaround
|
Known not affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64 | — |
Workaround
|
Threats
Impact
Important
A flaw was found in fast-xml-parser. A user can exploit this flaw by processing specially crafted XML data with the XML builder when the `preserveOrder` option is enabled. This can lead to a stack overflow, causing the application to crash and resulting in a Denial of Service (DoS).
7.5 (High)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x | — |
Vendor Fix
fix
Workaround
|
Known not affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64 | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in jsPDF, a JavaScript library used for generating PDF documents. This vulnerability allows a remote attacker to inject arbitrary PDF objects, including JavaScript actions, into a generated PDF. This can occur if unsanitized user input is provided to the `createAnnotation` method's `color` parameter. When a user opens or interacts with the specially crafted PDF, these injected actions may execute, potentially leading to arbitrary code execution or sensitive information disclosure.
8.1 (High)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x | — |
Vendor Fix
fix
Workaround
|
Known not affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64 | — |
Workaround
|
Threats
Impact
Important
A flaw was found in jsPDF, a JavaScript library for generating PDFs. A remote attacker can exploit this vulnerability by providing malicious input to the `options` argument of the `output` function. When a victim creates and opens a PDF using this unsanitized input, arbitrary HTML, including scripts, can be injected and executed within the victim's browser context. This Cross-Site Scripting (XSS) vulnerability allows the attacker to extract or modify sensitive information from the victim's browser.
8.1 (High)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x | — |
Vendor Fix
fix
Workaround
|
Known not affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64 | — |
Workaround
|
Threats
Impact
Important
A flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by supplying specially crafted XML input containing numeric character references or standard XML entities. This input can bypass configured entity expansion limits, leading to excessive memory allocation and high CPU usage. The primary consequence is a Denial of Service (DoS), which can crash the affected process.
7.5 (High)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x | — |
Vendor Fix
fix
Workaround
|
Known not affected
41 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64 | — |
Workaround
|
Threats
Impact
Moderate
A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.
9.1 (Critical)
Affected products
Fixed
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
29 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le | — |
Workaround
|
Threats
Impact
Important
References
91 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat Advanced Cluster Security\n(RHACS), which typically include new features, bug fixes, and/or\nsecurity patches.",
"title": "Topic"
},
{
"category": "general",
"text": "See the release notes (link in the references section) for a\ndescription of the fixes and enhancements in this particular release.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:7128",
"url": "https://access.redhat.com/errata/RHSA-2026:7128"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25128",
"url": "https://access.redhat.com/security/cve/CVE-2026-25128"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25535",
"url": "https://access.redhat.com/security/cve/CVE-2026-25535"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25755",
"url": "https://access.redhat.com/security/cve/CVE-2026-25755"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25896",
"url": "https://access.redhat.com/security/cve/CVE-2026-25896"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25940",
"url": "https://access.redhat.com/security/cve/CVE-2026-25940"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-26278",
"url": "https://access.redhat.com/security/cve/CVE-2026-26278"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27942",
"url": "https://access.redhat.com/security/cve/CVE-2026-27942"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-31898",
"url": "https://access.redhat.com/security/cve/CVE-2026-31898"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-31938",
"url": "https://access.redhat.com/security/cve/CVE-2026-31938"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33036",
"url": "https://access.redhat.com/security/cve/CVE-2026-33036"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33186",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.9/html-single/release_notes/index#about-this-release-495_release-notes-49",
"url": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.9/html-single/release_notes/index#about-this-release-495_release-notes-49"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_7128.json"
}
],
"title": "Red Hat Security Advisory: RHACS 4.9.5 security and bug fix update",
"tracking": {
"current_release_date": "2026-06-30T08:57:38+00:00",
"generator": {
"date": "2026-06-30T08:57:38+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.0"
}
},
"id": "RHSA-2026:7128",
"initial_release_date": "2026-04-08T17:43:53+00:00",
"revision_history": [
{
"date": "2026-04-08T17:43:53+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-08T17:44:00+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-30T08:57:38+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product": {
"name": "Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:advanced_cluster_security:4.9::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Advanced Cluster Security for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3A0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256%3A5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774260292"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256%3Ae4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256%3Ab092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256%3A9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3Aa4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3A3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3A4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3A57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3A67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3Ac435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3Abd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3A970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256%3A0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774260292"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256%3A433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256%3A27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3Aa524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3Ab6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3A9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3A8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3Aa961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3Aa2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3A981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3A6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256%3A7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774260292"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256%3A96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256%3A04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3A86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3Ad1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3Abaee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3A2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3A6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3A3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3Adc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3A38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256%3A4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774260292"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256%3Af6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256%3Aad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3A56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3Ae26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3A399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3A81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3A2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3A145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3Ad42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-25128",
"cwe": {
"id": "CWE-248",
"name": "Uncaught Exception"
},
"discovery_date": "2026-01-30T16:01:27.320561+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2435497"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service flaw has been discovered in the fast-xml-parser npm library. In fast-xml-parser, a RangeError vulnerability exists in the numeric entity processing of fast-xml-parser when parsing XML with out-of-range entity code points (e.g., `\u0026#9999999;` or `\u0026#xFFFFFF;`). This causes the parser to throw an uncaught exception, crashing any application that processes untrusted XML input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: fast-xml-parser has RangeError DoS Numeric Entities Bug",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The availability impact of this flaw is limited to the application which bundles the fast-xml-parser library. Red Hat host systems are not at risk of availability impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25128"
},
{
"category": "external",
"summary": "RHBZ#2435497",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2435497"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25128",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25128"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25128",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25128"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/4e387f61c4a5cef792f6a2f42467013290bf95dc",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/4e387f61c4a5cef792f6a2f42467013290bf95dc"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.4",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.4"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-37qj-frw5-hhjh",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-37qj-frw5-hhjh"
}
],
"release_date": "2026-01-30T15:14:58.244000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T17:43:53+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7128"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "fast-xml-parser: fast-xml-parser has RangeError DoS Numeric Entities Bug"
},
{
"cve": "CVE-2026-25535",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-02-19T15:01:17.455095+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2440992"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in jsPDF. The addImage and html methods accept user input in their first argument without proper sanitization. An attacker can supply a specially crafted GIF file, specifically with invalid width and height header values, forcing the application to allocate an excessive amount of memory, leading to an out-of-memory condition, causing an application crash and denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jsPDF: denial of service via malicious GIF dimensions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to process a specially crafted GIF file with an application using the addImage or html methods. This issue can cause the application to allocate an excessive amount of memory, eventually resulting in a denial of service with no other security impact. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25535"
},
{
"category": "external",
"summary": "RHBZ#2440992",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2440992"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25535",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25535"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25535",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25535"
},
{
"category": "external",
"summary": "https://github.com/ZeroXJacks/CVEs/blob/main/2026/CVE-2026-25535.md",
"url": "https://github.com/ZeroXJacks/CVEs/blob/main/2026/CVE-2026-25535.md"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/commit/2e5e156e284d92c7d134bce97e6418756941d5e6",
"url": "https://github.com/parallax/jsPDF/commit/2e5e156e284d92c7d134bce97e6418756941d5e6"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/releases/tag/v4.2.0",
"url": "https://github.com/parallax/jsPDF/releases/tag/v4.2.0"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/security/advisories/GHSA-67pg-wm7f-q7fj",
"url": "https://github.com/parallax/jsPDF/security/advisories/GHSA-67pg-wm7f-q7fj"
}
],
"release_date": "2026-02-19T14:34:05.648000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T17:43:53+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7128"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, sanitize image data or validate resources fetched from URLs before calling the addImage or html methods, making sure that the width and height header values do not exceed safe and predefined limits.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "jsPDF: denial of service via malicious GIF dimensions"
},
{
"cve": "CVE-2026-25755",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"discovery_date": "2026-02-19T15:01:21.761677+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2440993"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in jsPDF. The addJS method accepts user input without proper sanitization, allowing an attacker to inject arbitrary PDF objects into the document. A specially crafted payload that escapes the JavaScript string delimiter can execute malicious actions or alter the document structure, resulting in arbitrary code execution when a user opens a PDF with a viewer that supports embedded scripts.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jsPDF: PDF object injection via unsanitized input in addJS method",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to supply a specially crafted payload to the application using the addJS method and convince a user to open the generated PDF document with a viewer that supports embedded scripts. Due to these reasons, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25755"
},
{
"category": "external",
"summary": "RHBZ#2440993",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2440993"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25755",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25755"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25755",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25755"
},
{
"category": "external",
"summary": "https://github.com/ZeroXJacks/CVEs/blob/main/2026/CVE-2026-25755.md",
"url": "https://github.com/ZeroXJacks/CVEs/blob/main/2026/CVE-2026-25755.md"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/commit/56b46d45b052346f5995b005a34af5dcdddd5437",
"url": "https://github.com/parallax/jsPDF/commit/56b46d45b052346f5995b005a34af5dcdddd5437"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/releases/tag/v4.2.0",
"url": "https://github.com/parallax/jsPDF/releases/tag/v4.2.0"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/security/advisories/GHSA-9vjf-qc39-jprp",
"url": "https://github.com/parallax/jsPDF/security/advisories/GHSA-9vjf-qc39-jprp"
}
],
"release_date": "2026-02-19T14:41:46.941000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T17:43:53+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7128"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, sanitize the user-provided JavaScript code before passing it to the addJS method by strictly escaping backslashes and parentheses. Additionally, do not open PDF documents from untrusted sources.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.6,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "jsPDF: PDF object injection via unsanitized input in addJS method"
},
{
"cve": "CVE-2026-25896",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2026-02-20T22:01:59.622413+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2441501"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by providing a specially crafted XML input. The system incorrectly interprets a dot in a DOCTYPE entity name as a regular expression wildcard during processing. This allows the attacker to bypass security measures and inject malicious scripts, resulting in Cross-Site Scripting (XSS) when the parsed output is displayed to users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: fast-xml-parser: Cross-Site Scripting (XSS) due to improper DOCTYPE entity handling",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw has been assessed as IMPORTANT for Red Hat products. This vulnerability arises when the parsed XML output is subsequently rendered to users which requires the interaction of the user. The impact of this flaw is also limited to the user\u0027s browser context.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25896"
},
{
"category": "external",
"summary": "RHBZ#2441501",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2441501"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25896",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25896"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25896",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25896"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/943ef0eb1b2d3284e72dd74f44a042ee9f07026e",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/943ef0eb1b2d3284e72dd74f44a042ee9f07026e"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/ddcd0acf26ddd682cb0dc15a2bd6aa3b96bb1e69",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/ddcd0acf26ddd682cb0dc15a2bd6aa3b96bb1e69"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.5",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.5"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-m7jm-9gc2-mpf2",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-m7jm-9gc2-mpf2"
}
],
"release_date": "2026-02-20T20:57:48.074000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T17:43:53+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7128"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "fast-xml-parser: fast-xml-parser: Cross-Site Scripting (XSS) due to improper DOCTYPE entity handling"
},
{
"cve": "CVE-2026-25940",
"cwe": {
"id": "CWE-116",
"name": "Improper Encoding or Escaping of Output"
},
"discovery_date": "2026-02-19T16:04:06.757217+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2441016"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in jsPDF. The properties and methods of the Acroform module accept user input without sanitization, allowing an attacker to inject arbitrary PDF objects, such as JavaScript actions. Specifically, if an attacker can supply a specially crafted input to the AcroformChildClass.appearanceState property, JavaScript actions can be executed when a user opens the generated PDF document and hovers over the radio button.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jsPDF: PDF injection in AcroForm module allows arbitrary JavaScript execution (RadioButton children)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to supply a specially crafted input to the AcroformChildClass.appearanceState property of the Acroform module and convince a user to open the generated PDF document, resulting in arbitrary JavaScript execution when the user interacts with radio buttons. Due to these reasons, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25940"
},
{
"category": "external",
"summary": "RHBZ#2441016",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2441016"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25940",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25940"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25940",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25940"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/commit/71ad2dbfa6c7c189ab42b855b782620fa8a38375",
"url": "https://github.com/parallax/jsPDF/commit/71ad2dbfa6c7c189ab42b855b782620fa8a38375"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/releases/tag/v4.2.0",
"url": "https://github.com/parallax/jsPDF/releases/tag/v4.2.0"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/security/advisories/GHSA-p5xg-68wr-hm3m",
"url": "https://github.com/parallax/jsPDF/security/advisories/GHSA-p5xg-68wr-hm3m"
}
],
"release_date": "2026-02-19T15:26:57.645000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T17:43:53+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7128"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, sanitize the user-provided input before passing it to the AcroformChildClass.appearanceState property or other API members. Additionally, do not open PDF documents from untrusted sources.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.6,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "jsPDF: PDF injection in AcroForm module allows arbitrary JavaScript execution (RadioButton children)"
},
{
"cve": "CVE-2026-26278",
"cwe": {
"id": "CWE-776",
"name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
},
"discovery_date": "2026-02-19T21:03:33.363864+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2441120"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by providing a specially crafted, small XML input. This input can force the XML parser to perform an unlimited amount of entity expansion, consuming excessive resources. This can lead to the application freezing for an extended period, resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: fast-xml-parser: Denial of Service via unlimited XML entity expansion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-26278"
},
{
"category": "external",
"summary": "RHBZ#2441120",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2441120"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-26278",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-26278"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-26278",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-26278"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/910dae5be2de2955e968558fadf6e8f74f117a77",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/910dae5be2de2955e968558fadf6e8f74f117a77"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.6",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.6"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-jmr7-xgp7-cmfj",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-jmr7-xgp7-cmfj"
}
],
"release_date": "2026-02-19T19:40:55.842000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T17:43:53+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7128"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "fast-xml-parser: fast-xml-parser: Denial of Service via unlimited XML entity expansion"
},
{
"cve": "CVE-2026-27942",
"cwe": {
"id": "CWE-776",
"name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
},
"discovery_date": "2026-02-26T03:01:53.367202+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2442938"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in fast-xml-parser. A user can exploit this flaw by processing specially crafted XML data with the XML builder when the `preserveOrder` option is enabled. This can lead to a stack overflow, causing the application to crash and resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: fast-xml-parser: Stack overflow leads to Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The flaw affects the XML builder component of the fast-xml-parser library and is triggered only when the preserveOrder option is explicitly enabled. In Red Hat\u2013shipped configurations, this option is not enabled by default, and the vulnerable code path is therefore not exercised under typical deployments.\nThe underlying issue results in uncontrolled recursion leading to a stack overflow condition, which causes the application to terminate unexpectedly. While this can be triggered via crafted input, the impact is limited strictly to denial of service (DoS) and does not provide a mechanism for arbitrary code execution, privilege escalation, or data disclosure.\nFurthermore, exploitation requires that the affected application processes attacker-controlled XML input through the XML builder functionality with the specific vulnerable configuration enabled. This significantly reduces the attack surface and introduces environmental constraints not considered in the generalized NVD scoring.\n\nGiven the absence of confidentiality and integrity impact, the requirement for non-default configuration, and the limitation of the impact to process termination, Red Hat considers the practical risk to be lower than the NVD assessment. As such, this issue is classified as Moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27942"
},
{
"category": "external",
"summary": "RHBZ#2442938",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2442938"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27942",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27942"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27942",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27942"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/c13a961910f14986295dd28484eee830fa1a0e8a",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/c13a961910f14986295dd28484eee830fa1a0e8a"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/pull/791",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/pull/791"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-fj3w-jwp8-x2g3",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-fj3w-jwp8-x2g3"
}
],
"release_date": "2026-02-26T01:22:11.383000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T17:43:53+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7128"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, configure applications using the `fast-xml-parser` XML builder to set the `preserveOrder` option to `false`. Alternatively, ensure that all XML input data is thoroughly validated before being passed to the builder to prevent the processing of malicious or malformed content.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "fast-xml-parser: fast-xml-parser: Stack overflow leads to Denial of Service"
},
{
"cve": "CVE-2026-31898",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"discovery_date": "2026-03-18T04:02:12.103945+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2448547"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in jsPDF, a JavaScript library used for generating PDF documents. This vulnerability allows a remote attacker to inject arbitrary PDF objects, including JavaScript actions, into a generated PDF. This can occur if unsanitized user input is provided to the `createAnnotation` method\u0027s `color` parameter. When a user opens or interacts with the specially crafted PDF, these injected actions may execute, potentially leading to arbitrary code execution or sensitive information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jspdf: jsPDF: Arbitrary code execution via unsanitized input in createAnnotation method",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-31898"
},
{
"category": "external",
"summary": "RHBZ#2448547",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2448547"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-31898",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-31898"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-31898",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-31898"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/blob/b1607a9391d4cd65ea7ade25998aea8345ae1be3/src/modules/annotations.js#L193-L208",
"url": "https://github.com/parallax/jsPDF/blob/b1607a9391d4cd65ea7ade25998aea8345ae1be3/src/modules/annotations.js#L193-L208"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/commit/4155c4819d5eca284168e51e0e1e81126b4f14b8",
"url": "https://github.com/parallax/jsPDF/commit/4155c4819d5eca284168e51e0e1e81126b4f14b8"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/releases/tag/v4.2.1",
"url": "https://github.com/parallax/jsPDF/releases/tag/v4.2.1"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/security/advisories/GHSA-7x6v-j9x4-qf24",
"url": "https://github.com/parallax/jsPDF/security/advisories/GHSA-7x6v-j9x4-qf24"
}
],
"release_date": "2026-03-18T03:03:43.469000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T17:43:53+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7128"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "jspdf: jsPDF: Arbitrary code execution via unsanitized input in createAnnotation method"
},
{
"cve": "CVE-2026-31938",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2026-03-18T04:02:27.320536+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2448550"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in jsPDF, a JavaScript library for generating PDFs. A remote attacker can exploit this vulnerability by providing malicious input to the `options` argument of the `output` function. When a victim creates and opens a PDF using this unsanitized input, arbitrary HTML, including scripts, can be injected and executed within the victim\u0027s browser context. This Cross-Site Scripting (XSS) vulnerability allows the attacker to extract or modify sensitive information from the victim\u0027s browser.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jspdf: jsPDF: Cross site scripting via unsanitized output options",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-31938"
},
{
"category": "external",
"summary": "RHBZ#2448550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2448550"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-31938",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-31938"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-31938",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-31938"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/commit/87a40bbd07e6b30575196370670b41f264aa78d7",
"url": "https://github.com/parallax/jsPDF/commit/87a40bbd07e6b30575196370670b41f264aa78d7"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/releases/tag/v4.2.1",
"url": "https://github.com/parallax/jsPDF/releases/tag/v4.2.1"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/security/advisories/GHSA-wfv2-pwc8-crg5",
"url": "https://github.com/parallax/jsPDF/security/advisories/GHSA-wfv2-pwc8-crg5"
}
],
"release_date": "2026-03-18T03:05:44.964000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T17:43:53+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7128"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "jspdf: jsPDF: Cross site scripting via unsanitized output options"
},
{
"cve": "CVE-2026-33036",
"cwe": {
"id": "CWE-776",
"name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
},
"discovery_date": "2026-03-20T06:02:18.306021+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2449458"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by supplying specially crafted XML input containing numeric character references or standard XML entities. This input can bypass configured entity expansion limits, leading to excessive memory allocation and high CPU usage. The primary consequence is a Denial of Service (DoS), which can crash the affected process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: fast-xml-parser: Denial of Service via XML entity expansion bypass",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33036"
},
{
"category": "external",
"summary": "RHBZ#2449458",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449458"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33036",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33036"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33036",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33036"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/bd26122c838e6a55e7d7ac49b4ccc01a49999a01",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/bd26122c838e6a55e7d7ac49b4ccc01a49999a01"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.5.6",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.5.6"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-8gc5-j5rx-235r",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-8gc5-j5rx-235r"
}
],
"release_date": "2026-03-20T05:17:03.290000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T17:43:53+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7128"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "fast-xml-parser: fast-xml-parser: Denial of Service via XML entity expansion bypass"
},
{
"cve": "CVE-2026-33186",
"cwe": {
"id": "CWE-551",
"name": "Incorrect Behavior Order: Authorization Before Parsing and Canonicalization"
},
"discovery_date": "2026-03-20T23:02:27.802640+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2449833"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "RHBZ#2449833",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33186",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33186"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3",
"url": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3"
}
],
"release_date": "2026-03-20T22:23:32.147000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T17:43:53+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7128"
},
{
"category": "workaround",
"details": "To mitigate this issue, implement infrastructure-level normalization to ensure all incoming HTTP/2 `:path` headers are properly formatted with a leading slash before reaching the gRPC-Go server. This can be achieved by configuring a reverse proxy or API gateway to validate and normalize the `:path` header. Ensure that any such intermediary is properly configured and restarted to apply the changes, which may temporarily impact service availability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation"
}
]
}
WID-SEC-W-2026-0772
Vulnerability from csaf_certbund - Published: 2026-03-17 23:00 - Updated: 2026-05-21 22:00Summary
IBM App Connect Enterprise (fast-xml-parser): Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: IBM App Connect Enterprise kombiniert die branchenbewährten Technologien des IBM Integration Bus mit Cloud-nativen Technologien.
Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in IBM App Connect Enterprise ausnutzen, um einen Denial-of-Service-Zustand herbeizuführen oder Sicherheitsmaßnahmen zu umgehen, wodurch Cross-Site-Scripting-Angriffe ermöglicht werden.
Betroffene Betriebssysteme: - Sonstiges
- UNIX
- Windows
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM App Connect Enterprise 12.0.1.0-12.0.12.25
IBM / App Connect Enterprise
|
cpe:/a:ibm:app_connect_enterprise:12.0.1.0_-_12.0.12.25
|
12.0.1.0-12.0.12.25 | |
|
IBM App Connect Enterprise 13.0.1.0-13.0.7.1
IBM / App Connect Enterprise
|
cpe:/a:ibm:app_connect_enterprise:13.0.1.0_-_13.0.7.1
|
13.0.1.0-13.0.7.1 | |
|
IBM App Connect Enterprise Container Operator <12.0.22
IBM / App Connect Enterprise
|
Container Operator <12.0.22 | ||
|
IBM App Connect Enterprise <12.0.12.24
IBM / App Connect Enterprise
|
<12.0.12.24 | ||
|
IBM App Connect Enterprise Certified Container Operator <13.0.0
IBM / App Connect Enterprise
|
Certified Container Operator <13.0.0 | ||
|
IBM App Connect Enterprise <13.0.6.2
IBM / App Connect Enterprise
|
<13.0.6.2 | ||
|
IBM App Connect Enterprise
IBM / App Connect Enterprise
|
cpe:/a:ibm:app_connect_enterprise:-
|
— |
Affected products
Known affected
7 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
IBM App Connect Enterprise 12.0.1.0-12.0.12.25
IBM / App Connect Enterprise
|
cpe:/a:ibm:app_connect_enterprise:12.0.1.0_-_12.0.12.25
|
12.0.1.0-12.0.12.25 | |
|
IBM App Connect Enterprise 13.0.1.0-13.0.7.1
IBM / App Connect Enterprise
|
cpe:/a:ibm:app_connect_enterprise:13.0.1.0_-_13.0.7.1
|
13.0.1.0-13.0.7.1 | |
|
IBM App Connect Enterprise Container Operator <12.0.22
IBM / App Connect Enterprise
|
Container Operator <12.0.22 | ||
|
IBM App Connect Enterprise <12.0.12.24
IBM / App Connect Enterprise
|
<12.0.12.24 | ||
|
IBM App Connect Enterprise Certified Container Operator <13.0.0
IBM / App Connect Enterprise
|
Certified Container Operator <13.0.0 | ||
|
IBM App Connect Enterprise <13.0.6.2
IBM / App Connect Enterprise
|
<13.0.6.2 | ||
|
IBM App Connect Enterprise
IBM / App Connect Enterprise
|
cpe:/a:ibm:app_connect_enterprise:-
|
— |
References
7 references
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "IBM App Connect Enterprise kombiniert die branchenbew\u00e4hrten Technologien des IBM Integration Bus mit Cloud-nativen Technologien.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in IBM App Connect Enterprise ausnutzen, um einen Denial-of-Service-Zustand herbeizuf\u00fchren oder Sicherheitsma\u00dfnahmen zu umgehen, wodurch Cross-Site-Scripting-Angriffe erm\u00f6glicht werden.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Sonstiges\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2026-0772 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-0772.json"
},
{
"category": "self",
"summary": "WID-SEC-2026-0772 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-0772"
},
{
"category": "external",
"summary": "IBM Security Bulletin vom 2026-03-17",
"url": "https://www.ibm.com/support/pages/node/7266629"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7267856 vom 2026-03-27",
"url": "https://www.ibm.com/support/pages/node/7267856"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7268165 vom 2026-03-31",
"url": "https://www.ibm.com/support/pages/node/7268165"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7268736 vom 2026-04-07",
"url": "https://www.ibm.com/support/pages/node/7268736"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7273772 vom 2026-05-22",
"url": "https://www.ibm.com/support/pages/node/7273772"
}
],
"source_lang": "en-US",
"title": "IBM App Connect Enterprise (fast-xml-parser): Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2026-05-21T22:00:00.000+00:00",
"generator": {
"date": "2026-05-22T07:55:34.027+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.6.0"
}
},
"id": "WID-SEC-W-2026-0772",
"initial_release_date": "2026-03-17T23:00:00.000+00:00",
"revision_history": [
{
"date": "2026-03-17T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2026-03-29T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2026-03-31T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2026-04-07T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2026-05-21T22:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von IBM und IBM-APAR aufgenommen"
}
],
"status": "final",
"version": "5"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "IBM App Connect Enterprise",
"product": {
"name": "IBM App Connect Enterprise",
"product_id": "T032495",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:app_connect_enterprise:-"
}
}
},
{
"category": "product_version_range",
"name": "\u003c13.0.6.2",
"product": {
"name": "IBM App Connect Enterprise \u003c13.0.6.2",
"product_id": "T051874"
}
},
{
"category": "product_version",
"name": "13.0.6.2",
"product": {
"name": "IBM App Connect Enterprise 13.0.6.2",
"product_id": "T051874-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:app_connect_enterprise:13.0.6.2"
}
}
},
{
"category": "product_version_range",
"name": "\u003c12.0.12.24",
"product": {
"name": "IBM App Connect Enterprise \u003c12.0.12.24",
"product_id": "T051876"
}
},
{
"category": "product_version",
"name": "12.0.12.24",
"product": {
"name": "IBM App Connect Enterprise 12.0.12.24",
"product_id": "T051876-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:app_connect_enterprise:12.0.12.24"
}
}
},
{
"category": "product_version_range",
"name": "Container Operator \u003c12.0.22",
"product": {
"name": "IBM App Connect Enterprise Container Operator \u003c12.0.22",
"product_id": "T052447"
}
},
{
"category": "product_version",
"name": "Container Operator 12.0.22",
"product": {
"name": "IBM App Connect Enterprise Container Operator 12.0.22",
"product_id": "T052447-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:app_connect_enterprise:certified_container_operator__12.0.22"
}
}
},
{
"category": "product_version_range",
"name": "Certified Container Operator \u003c13.0.0",
"product": {
"name": "IBM App Connect Enterprise Certified Container Operator \u003c13.0.0",
"product_id": "T052448"
}
},
{
"category": "product_version",
"name": "Certified Container Operator 13.0.0",
"product": {
"name": "IBM App Connect Enterprise Certified Container Operator 13.0.0",
"product_id": "T052448-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:app_connect_enterprise:certified_container_operator__13.0.0"
}
}
},
{
"category": "product_version",
"name": "13.0.1.0-13.0.7.1",
"product": {
"name": "IBM App Connect Enterprise 13.0.1.0-13.0.7.1",
"product_id": "T054485",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:app_connect_enterprise:13.0.1.0_-_13.0.7.1"
}
}
},
{
"category": "product_version",
"name": "12.0.1.0-12.0.12.25",
"product": {
"name": "IBM App Connect Enterprise 12.0.1.0-12.0.12.25",
"product_id": "T054486",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:app_connect_enterprise:12.0.1.0_-_12.0.12.25"
}
}
}
],
"category": "product_name",
"name": "App Connect Enterprise"
}
],
"category": "vendor",
"name": "IBM"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-25896",
"product_status": {
"known_affected": [
"T054486",
"T054485",
"T052447",
"T051876",
"T052448",
"T051874",
"T032495"
]
},
"release_date": "2026-03-17T23:00:00.000+00:00",
"title": "CVE-2026-25896"
},
{
"cve": "CVE-2026-26278",
"product_status": {
"known_affected": [
"T054486",
"T054485",
"T052447",
"T051876",
"T052448",
"T051874",
"T032495"
]
},
"release_date": "2026-03-17T23:00:00.000+00:00",
"title": "CVE-2026-26278"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…