Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2026-31938 (GCVE-0-2026-31938)
Vulnerability from cvelistv5 – Published: 2026-03-18 03:05 – Updated: 2026-03-18 13:59
VLAI?
EPSS
Title
jsPDF has HTML Injection in New Window paths
Summary
jsPDF is a library to generate PDFs in JavaScript. Prior to version 4.2.1, user control of the `options` argument of the `output` function allows attackers to inject arbitrary HTML (such as scripts) into the browser context the created PDF is opened in. The vulnerability can be exploited in the following scenario: the attacker provides values for the output options, for example via a web interface. These values are then passed unsanitized (automatically or semi-automatically) to the attack victim. The victim creates and opens a PDF with the attack vector using one of the vulnerable method overloads inside their browser. The attacker can thus inject scripts that run in the victims browser context and can extract or modify secrets from this context. The vulnerability has been fixed in jspdf@4.2.1. As a workaround, sanitize user input before passing it to the output method.
Severity ?
9.6 (Critical)
CWE
- CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Assigner
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-31938",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-03-18T13:59:39.345496Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-03-18T13:59:51.966Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "jsPDF",
"vendor": "parallax",
"versions": [
{
"status": "affected",
"version": "\u003c 4.2.1"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "jsPDF is a library to generate PDFs in JavaScript. Prior to version 4.2.1, user control of the `options` argument of the `output` function allows attackers to inject arbitrary HTML (such as scripts) into the browser context the created PDF is opened in. The vulnerability can be exploited in the following scenario: the attacker provides values for the output options, for example via a web interface. These values are then passed unsanitized (automatically or semi-automatically) to the attack victim. The victim creates and opens a PDF with the attack vector using one of the vulnerable method overloads inside their browser. The attacker can thus inject scripts that run in the victims browser context and can extract or modify secrets from this context. The vulnerability has been fixed in jspdf@4.2.1. As a workaround, sanitize user input before passing it to the output method."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 9.6,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:L",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-79",
"description": "CWE-79: Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-03-18T03:05:44.964Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/parallax/jsPDF/security/advisories/GHSA-wfv2-pwc8-crg5",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/parallax/jsPDF/security/advisories/GHSA-wfv2-pwc8-crg5"
},
{
"name": "https://github.com/parallax/jsPDF/commit/87a40bbd07e6b30575196370670b41f264aa78d7",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/parallax/jsPDF/commit/87a40bbd07e6b30575196370670b41f264aa78d7"
},
{
"name": "https://github.com/parallax/jsPDF/releases/tag/v4.2.1",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/parallax/jsPDF/releases/tag/v4.2.1"
}
],
"source": {
"advisory": "GHSA-wfv2-pwc8-crg5",
"discovery": "UNKNOWN"
},
"title": "jsPDF has HTML Injection in New Window paths"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2026-31938",
"datePublished": "2026-03-18T03:05:44.964Z",
"dateReserved": "2026-03-10T15:10:10.655Z",
"dateUpdated": "2026-03-18T13:59:51.966Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2026-31938\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2026-03-18T04:17:23.507\",\"lastModified\":\"2026-03-18T18:02:15.640\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"jsPDF is a library to generate PDFs in JavaScript. Prior to version 4.2.1, user control of the `options` argument of the `output` function allows attackers to inject arbitrary HTML (such as scripts) into the browser context the created PDF is opened in. The vulnerability can be exploited in the following scenario: the attacker provides values for the output options, for example via a web interface. These values are then passed unsanitized (automatically or semi-automatically) to the attack victim. The victim creates and opens a PDF with the attack vector using one of the vulnerable method overloads inside their browser. The attacker can thus inject scripts that run in the victims browser context and can extract or modify secrets from this context. The vulnerability has been fixed in jspdf@4.2.1. As a workaround, sanitize user input before passing it to the output method.\"},{\"lang\":\"es\",\"value\":\"jsPDF es una biblioteca para generar PDFs en JavaScript. Antes de la versi\u00f3n 4.2.1, el control del usuario sobre el argumento \u0027options\u0027 de la funci\u00f3n \u0027output\u0027 permite a los atacantes inyectar HTML arbitrario (como scripts) en el contexto del navegador en el que se abre el PDF creado. La vulnerabilidad puede ser explotada en el siguiente escenario: el atacante proporciona valores para las opciones de salida, por ejemplo, a trav\u00e9s de una interfaz web. Estos valores se pasan luego sin sanear (autom\u00e1tica o semi-autom\u00e1ticamente) a la v\u00edctima del ataque. La v\u00edctima crea y abre un PDF con el vector de ataque utilizando una de las sobrecargas de m\u00e9todo vulnerables dentro de su navegador. El atacante puede as\u00ed inyectar scripts que se ejecutan en el contexto del navegador de la v\u00edctima y puede extraer o modificar secretos de este contexto. La vulnerabilidad ha sido corregida en jspdf@4.2.1. Como soluci\u00f3n alternativa, sanear la entrada del usuario antes de pasarla al m\u00e9todo de salida.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:L\",\"baseScore\":9.6,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"LOW\"},\"exploitabilityScore\":2.8,\"impactScore\":6.0},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N\",\"baseScore\":6.1,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":2.7}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-79\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:parall:jspdf:*:*:*:*:*:node.js:*:*\",\"versionEndExcluding\":\"4.2.1\",\"matchCriteriaId\":\"E32C16E0-23FB-49ED-B364-2170D7FC9935\"}]}]}],\"references\":[{\"url\":\"https://github.com/parallax/jsPDF/commit/87a40bbd07e6b30575196370670b41f264aa78d7\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/parallax/jsPDF/releases/tag/v4.2.1\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Product\",\"Release Notes\"]},{\"url\":\"https://github.com/parallax/jsPDF/security/advisories/GHSA-wfv2-pwc8-crg5\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Mitigation\",\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-31938\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-03-18T13:59:39.345496Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-03-18T13:59:43.410Z\"}}], \"cna\": {\"title\": \"jsPDF has HTML Injection in New Window paths\", \"source\": {\"advisory\": \"GHSA-wfv2-pwc8-crg5\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"CHANGED\", \"version\": \"3.1\", \"baseScore\": 9.6, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"CRITICAL\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:L\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"REQUIRED\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"LOW\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"vendor\": \"parallax\", \"product\": \"jsPDF\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003c 4.2.1\"}]}], \"references\": [{\"url\": \"https://github.com/parallax/jsPDF/security/advisories/GHSA-wfv2-pwc8-crg5\", \"name\": \"https://github.com/parallax/jsPDF/security/advisories/GHSA-wfv2-pwc8-crg5\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://github.com/parallax/jsPDF/commit/87a40bbd07e6b30575196370670b41f264aa78d7\", \"name\": \"https://github.com/parallax/jsPDF/commit/87a40bbd07e6b30575196370670b41f264aa78d7\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/parallax/jsPDF/releases/tag/v4.2.1\", \"name\": \"https://github.com/parallax/jsPDF/releases/tag/v4.2.1\", \"tags\": [\"x_refsource_MISC\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"jsPDF is a library to generate PDFs in JavaScript. Prior to version 4.2.1, user control of the `options` argument of the `output` function allows attackers to inject arbitrary HTML (such as scripts) into the browser context the created PDF is opened in. The vulnerability can be exploited in the following scenario: the attacker provides values for the output options, for example via a web interface. These values are then passed unsanitized (automatically or semi-automatically) to the attack victim. The victim creates and opens a PDF with the attack vector using one of the vulnerable method overloads inside their browser. The attacker can thus inject scripts that run in the victims browser context and can extract or modify secrets from this context. The vulnerability has been fixed in jspdf@4.2.1. As a workaround, sanitize user input before passing it to the output method.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-79\", \"description\": \"CWE-79: Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2026-03-18T03:05:44.964Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2026-31938\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-03-18T13:59:51.966Z\", \"dateReserved\": \"2026-03-10T15:10:10.655Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2026-03-18T03:05:44.964Z\", \"assignerShortName\": \"GitHub_M\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
RHSA-2026:7128
Vulnerability from csaf_redhat - Published: 2026-04-08 17:43 - Updated: 2026-04-08 20:49Summary
Red Hat Security Advisory: RHACS 4.9.5 security and bug fix update
Severity
Important
Notes
Topic: Updated images are now available for Red Hat Advanced Cluster Security
(RHACS), which typically include new features, bug fixes, and/or
security patches.
Details: See the release notes (link in the references section) for a
description of the fixes and enhancements in this particular release.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A denial of service flaw has been discovered in the fast-xml-parser npm library. In fast-xml-parser, a RangeError vulnerability exists in the numeric entity processing of fast-xml-parser when parsing XML with out-of-range entity code points (e.g., `�` or `�`). This causes the parser to throw an uncaught exception, crashing any application that processes untrusted XML input.
5.3 (Medium)
Vendor Fix
If you are using an earlier version of RHACS, you are advised to
upgrade to the version of RHACS mentioned in the synopsis and release
notes in order to take advantage of the enhancements, bug fixes, and/or
security patches in the release.
https://access.redhat.com/errata/RHSA-2026:7128
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
A flaw was found in jsPDF. The addImage and html methods accept user input in their first argument without proper sanitization. An attacker can supply a specially crafted GIF file, specifically with invalid width and height header values, forcing the application to allocate an excessive amount of memory, leading to an out-of-memory condition, causing an application crash and denial of service.
7.5 (High)
Vendor Fix
If you are using an earlier version of RHACS, you are advised to
upgrade to the version of RHACS mentioned in the synopsis and release
notes in order to take advantage of the enhancements, bug fixes, and/or
security patches in the release.
https://access.redhat.com/errata/RHSA-2026:7128
Workaround
To mitigate this vulnerability, sanitize image data or validate resources fetched from URLs before calling the addImage or html methods, making sure that the width and height header values do not exceed safe and predefined limits.
A flaw was found in jsPDF. The addJS method accepts user input without proper sanitization, allowing an attacker to inject arbitrary PDF objects into the document. A specially crafted payload that escapes the JavaScript string delimiter can execute malicious actions or alter the document structure, resulting in arbitrary code execution when a user opens a PDF with a viewer that supports embedded scripts.
9.6 (Critical)
Vendor Fix
If you are using an earlier version of RHACS, you are advised to
upgrade to the version of RHACS mentioned in the synopsis and release
notes in order to take advantage of the enhancements, bug fixes, and/or
security patches in the release.
https://access.redhat.com/errata/RHSA-2026:7128
Workaround
To mitigate this vulnerability, sanitize the user-provided JavaScript code before passing it to the addJS method by strictly escaping backslashes and parentheses. Additionally, do not open PDF documents from untrusted sources.
A flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by providing a specially crafted XML input. The system incorrectly interprets a dot in a DOCTYPE entity name as a regular expression wildcard during processing. This allows the attacker to bypass security measures and inject malicious scripts, resulting in Cross-Site Scripting (XSS) when the parsed output is displayed to users.
7.1 (High)
Vendor Fix
If you are using an earlier version of RHACS, you are advised to
upgrade to the version of RHACS mentioned in the synopsis and release
notes in order to take advantage of the enhancements, bug fixes, and/or
security patches in the release.
https://access.redhat.com/errata/RHSA-2026:7128
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
A flaw was found in jsPDF. The properties and methods of the Acroform module accept user input without sanitization, allowing an attacker to inject arbitrary PDF objects, such as JavaScript actions. Specifically, if an attacker can supply a specially crafted input to the AcroformChildClass.appearanceState property, JavaScript actions can be executed when a user opens the generated PDF document and hovers over the radio button.
9.6 (Critical)
Vendor Fix
If you are using an earlier version of RHACS, you are advised to
upgrade to the version of RHACS mentioned in the synopsis and release
notes in order to take advantage of the enhancements, bug fixes, and/or
security patches in the release.
https://access.redhat.com/errata/RHSA-2026:7128
Workaround
To mitigate this vulnerability, sanitize the user-provided input before passing it to the AcroformChildClass.appearanceState property or other API members. Additionally, do not open PDF documents from untrusted sources.
A denial of service flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by providing a specially crafted, small XML input. This input can force the XML parser to perform an unlimited amount of entity expansion, consuming excessive resources. This can lead to the application freezing for an extended period, resulting in a Denial of Service (DoS).
7.5 (High)
Vendor Fix
If you are using an earlier version of RHACS, you are advised to
upgrade to the version of RHACS mentioned in the synopsis and release
notes in order to take advantage of the enhancements, bug fixes, and/or
security patches in the release.
https://access.redhat.com/errata/RHSA-2026:7128
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
A flaw was found in fast-xml-parser. A user can exploit this flaw by processing specially crafted XML data with the XML builder when the `preserveOrder` option is enabled. This can lead to a stack overflow, causing the application to crash and resulting in a Denial of Service (DoS).
7.5 (High)
Vendor Fix
If you are using an earlier version of RHACS, you are advised to
upgrade to the version of RHACS mentioned in the synopsis and release
notes in order to take advantage of the enhancements, bug fixes, and/or
security patches in the release.
https://access.redhat.com/errata/RHSA-2026:7128
Workaround
To mitigate this vulnerability, configure applications using the `fast-xml-parser` XML builder to set the `preserveOrder` option to `false`. Alternatively, ensure that all XML input data is thoroughly validated before being passed to the builder to prevent the processing of malicious or malformed content.
A flaw was found in jsPDF, a JavaScript library used for generating PDF documents. This vulnerability allows a remote attacker to inject arbitrary PDF objects, including JavaScript actions, into a generated PDF. This can occur if unsanitized user input is provided to the `createAnnotation` method's `color` parameter. When a user opens or interacts with the specially crafted PDF, these injected actions may execute, potentially leading to arbitrary code execution or sensitive information disclosure.
8.1 (High)
Vendor Fix
If you are using an earlier version of RHACS, you are advised to
upgrade to the version of RHACS mentioned in the synopsis and release
notes in order to take advantage of the enhancements, bug fixes, and/or
security patches in the release.
https://access.redhat.com/errata/RHSA-2026:7128
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
A flaw was found in jsPDF, a JavaScript library for generating PDFs. A remote attacker can exploit this vulnerability by providing malicious input to the `options` argument of the `output` function. When a victim creates and opens a PDF using this unsanitized input, arbitrary HTML, including scripts, can be injected and executed within the victim's browser context. This Cross-Site Scripting (XSS) vulnerability allows the attacker to extract or modify sensitive information from the victim's browser.
8.1 (High)
Vendor Fix
If you are using an earlier version of RHACS, you are advised to
upgrade to the version of RHACS mentioned in the synopsis and release
notes in order to take advantage of the enhancements, bug fixes, and/or
security patches in the release.
https://access.redhat.com/errata/RHSA-2026:7128
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
A flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by supplying specially crafted XML input containing numeric character references or standard XML entities. This input can bypass configured entity expansion limits, leading to excessive memory allocation and high CPU usage. The primary consequence is a Denial of Service (DoS), which can crash the affected process.
7.5 (High)
Vendor Fix
If you are using an earlier version of RHACS, you are advised to
upgrade to the version of RHACS mentioned in the synopsis and release
notes in order to take advantage of the enhancements, bug fixes, and/or
security patches in the release.
https://access.redhat.com/errata/RHSA-2026:7128
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.
A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.
8.1 (High)
Vendor Fix
If you are using an earlier version of RHACS, you are advised to
upgrade to the version of RHACS mentioned in the synopsis and release
notes in order to take advantage of the enhancements, bug fixes, and/or
security patches in the release.
https://access.redhat.com/errata/RHSA-2026:7128
Workaround
To mitigate this issue, implement infrastructure-level normalization to ensure all incoming HTTP/2 `:path` headers are properly formatted with a leading slash before reaching the gRPC-Go server. This can be achieved by configuring a reverse proxy or API gateway to validate and normalize the `:path` header. Ensure that any such intermediary is properly configured and restarted to apply the changes, which may temporarily impact service availability.
References
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat Advanced Cluster Security\n(RHACS), which typically include new features, bug fixes, and/or\nsecurity patches.",
"title": "Topic"
},
{
"category": "general",
"text": "See the release notes (link in the references section) for a\ndescription of the fixes and enhancements in this particular release.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:7128",
"url": "https://access.redhat.com/errata/RHSA-2026:7128"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25128",
"url": "https://access.redhat.com/security/cve/CVE-2026-25128"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25535",
"url": "https://access.redhat.com/security/cve/CVE-2026-25535"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25755",
"url": "https://access.redhat.com/security/cve/CVE-2026-25755"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25896",
"url": "https://access.redhat.com/security/cve/CVE-2026-25896"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25940",
"url": "https://access.redhat.com/security/cve/CVE-2026-25940"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-26278",
"url": "https://access.redhat.com/security/cve/CVE-2026-26278"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27942",
"url": "https://access.redhat.com/security/cve/CVE-2026-27942"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-31898",
"url": "https://access.redhat.com/security/cve/CVE-2026-31898"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-31938",
"url": "https://access.redhat.com/security/cve/CVE-2026-31938"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33036",
"url": "https://access.redhat.com/security/cve/CVE-2026-33036"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33186",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.9/html-single/release_notes/index#about-this-release-495_release-notes-49",
"url": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.9/html-single/release_notes/index#about-this-release-495_release-notes-49"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_7128.json"
}
],
"title": "Red Hat Security Advisory: RHACS 4.9.5 security and bug fix update",
"tracking": {
"current_release_date": "2026-04-08T20:49:51+00:00",
"generator": {
"date": "2026-04-08T20:49:51+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.5"
}
},
"id": "RHSA-2026:7128",
"initial_release_date": "2026-04-08T17:43:53+00:00",
"revision_history": [
{
"date": "2026-04-08T17:43:53+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-08T17:44:00+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-04-08T20:49:51+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product": {
"name": "Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:advanced_cluster_security:4.9::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Advanced Cluster Security for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3A0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256%3A5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774260292"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256%3Ae4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256%3Ab092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256%3A9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3Aa4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3A3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3A4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3A57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3A67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3Ac435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3Abd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3A970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256%3A0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774260292"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256%3A433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256%3A27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3Aa524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3Ab6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3A9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3A8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3Aa961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3Aa2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3A981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3A6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256%3A7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774260292"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256%3A96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256%3A04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3A86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3Ad1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3Abaee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3A2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3A6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3A3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3Adc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3A38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256%3A4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774260292"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256%3Af6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256%3Aad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3A56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3Ae26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3A399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3A81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3A2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294136"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3A145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3Ad42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594284"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.9",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.9"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-25128",
"cwe": {
"id": "CWE-248",
"name": "Uncaught Exception"
},
"discovery_date": "2026-01-30T16:01:27.320561+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2435497"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service flaw has been discovered in the fast-xml-parser npm library. In fast-xml-parser, a RangeError vulnerability exists in the numeric entity processing of fast-xml-parser when parsing XML with out-of-range entity code points (e.g., `\u0026#9999999;` or `\u0026#xFFFFFF;`). This causes the parser to throw an uncaught exception, crashing any application that processes untrusted XML input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: fast-xml-parser has RangeError DoS Numeric Entities Bug",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The availability impact of this flaw is limited to the application which bundles the fast-xml-parser library. Red Hat host systems are not at risk of availability impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25128"
},
{
"category": "external",
"summary": "RHBZ#2435497",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2435497"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25128",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25128"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25128",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25128"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/4e387f61c4a5cef792f6a2f42467013290bf95dc",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/4e387f61c4a5cef792f6a2f42467013290bf95dc"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.4",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.4"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-37qj-frw5-hhjh",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-37qj-frw5-hhjh"
}
],
"release_date": "2026-01-30T15:14:58.244000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T17:43:53+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7128"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "fast-xml-parser: fast-xml-parser has RangeError DoS Numeric Entities Bug"
},
{
"cve": "CVE-2026-25535",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-02-19T15:01:17.455095+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2440992"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in jsPDF. The addImage and html methods accept user input in their first argument without proper sanitization. An attacker can supply a specially crafted GIF file, specifically with invalid width and height header values, forcing the application to allocate an excessive amount of memory, leading to an out-of-memory condition, causing an application crash and denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jsPDF: denial of service via malicious GIF dimensions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to process a specially crafted GIF file with an application using the addImage or html methods. This issue can cause the application to allocate an excessive amount of memory, eventually resulting in a denial of service with no other security impact. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25535"
},
{
"category": "external",
"summary": "RHBZ#2440992",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2440992"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25535",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25535"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25535",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25535"
},
{
"category": "external",
"summary": "https://github.com/ZeroXJacks/CVEs/blob/main/2026/CVE-2026-25535.md",
"url": "https://github.com/ZeroXJacks/CVEs/blob/main/2026/CVE-2026-25535.md"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/commit/2e5e156e284d92c7d134bce97e6418756941d5e6",
"url": "https://github.com/parallax/jsPDF/commit/2e5e156e284d92c7d134bce97e6418756941d5e6"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/releases/tag/v4.2.0",
"url": "https://github.com/parallax/jsPDF/releases/tag/v4.2.0"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/security/advisories/GHSA-67pg-wm7f-q7fj",
"url": "https://github.com/parallax/jsPDF/security/advisories/GHSA-67pg-wm7f-q7fj"
}
],
"release_date": "2026-02-19T14:34:05.648000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T17:43:53+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7128"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, sanitize image data or validate resources fetched from URLs before calling the addImage or html methods, making sure that the width and height header values do not exceed safe and predefined limits.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "jsPDF: denial of service via malicious GIF dimensions"
},
{
"cve": "CVE-2026-25755",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"discovery_date": "2026-02-19T15:01:21.761677+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2440993"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in jsPDF. The addJS method accepts user input without proper sanitization, allowing an attacker to inject arbitrary PDF objects into the document. A specially crafted payload that escapes the JavaScript string delimiter can execute malicious actions or alter the document structure, resulting in arbitrary code execution when a user opens a PDF with a viewer that supports embedded scripts.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jsPDF: PDF object injection via unsanitized input in addJS method",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to supply a specially crafted payload to the application using the addJS method and convince a user to open the generated PDF document with a viewer that supports embedded scripts. Due to these reasons, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25755"
},
{
"category": "external",
"summary": "RHBZ#2440993",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2440993"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25755",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25755"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25755",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25755"
},
{
"category": "external",
"summary": "https://github.com/ZeroXJacks/CVEs/blob/main/2026/CVE-2026-25755.md",
"url": "https://github.com/ZeroXJacks/CVEs/blob/main/2026/CVE-2026-25755.md"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/commit/56b46d45b052346f5995b005a34af5dcdddd5437",
"url": "https://github.com/parallax/jsPDF/commit/56b46d45b052346f5995b005a34af5dcdddd5437"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/releases/tag/v4.2.0",
"url": "https://github.com/parallax/jsPDF/releases/tag/v4.2.0"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/security/advisories/GHSA-9vjf-qc39-jprp",
"url": "https://github.com/parallax/jsPDF/security/advisories/GHSA-9vjf-qc39-jprp"
}
],
"release_date": "2026-02-19T14:41:46.941000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T17:43:53+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7128"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, sanitize the user-provided JavaScript code before passing it to the addJS method by strictly escaping backslashes and parentheses. Additionally, do not open PDF documents from untrusted sources.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.6,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "jsPDF: PDF object injection via unsanitized input in addJS method"
},
{
"cve": "CVE-2026-25896",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2026-02-20T22:01:59.622413+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2441501"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by providing a specially crafted XML input. The system incorrectly interprets a dot in a DOCTYPE entity name as a regular expression wildcard during processing. This allows the attacker to bypass security measures and inject malicious scripts, resulting in Cross-Site Scripting (XSS) when the parsed output is displayed to users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: fast-xml-parser: Cross-Site Scripting (XSS) due to improper DOCTYPE entity handling",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw has been assessed as IMPORTANT for Red Hat products. This vulnerability arises when the parsed XML output is subsequently rendered to users which requires the interaction of the user. The impact of this flaw is also limited to the user\u0027s browser context.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25896"
},
{
"category": "external",
"summary": "RHBZ#2441501",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2441501"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25896",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25896"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25896",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25896"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/943ef0eb1b2d3284e72dd74f44a042ee9f07026e",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/943ef0eb1b2d3284e72dd74f44a042ee9f07026e"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/ddcd0acf26ddd682cb0dc15a2bd6aa3b96bb1e69",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/ddcd0acf26ddd682cb0dc15a2bd6aa3b96bb1e69"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.5",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.5"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-m7jm-9gc2-mpf2",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-m7jm-9gc2-mpf2"
}
],
"release_date": "2026-02-20T20:57:48.074000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T17:43:53+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7128"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "fast-xml-parser: fast-xml-parser: Cross-Site Scripting (XSS) due to improper DOCTYPE entity handling"
},
{
"cve": "CVE-2026-25940",
"cwe": {
"id": "CWE-116",
"name": "Improper Encoding or Escaping of Output"
},
"discovery_date": "2026-02-19T16:04:06.757217+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2441016"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in jsPDF. The properties and methods of the Acroform module accept user input without sanitization, allowing an attacker to inject arbitrary PDF objects, such as JavaScript actions. Specifically, if an attacker can supply a specially crafted input to the AcroformChildClass.appearanceState property, JavaScript actions can be executed when a user opens the generated PDF document and hovers over the radio button.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jsPDF: PDF injection in AcroForm module allows arbitrary JavaScript execution (RadioButton children)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to supply a specially crafted input to the AcroformChildClass.appearanceState property of the Acroform module and convince a user to open the generated PDF document, resulting in arbitrary JavaScript execution when the user interacts with radio buttons. Due to these reasons, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25940"
},
{
"category": "external",
"summary": "RHBZ#2441016",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2441016"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25940",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25940"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25940",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25940"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/commit/71ad2dbfa6c7c189ab42b855b782620fa8a38375",
"url": "https://github.com/parallax/jsPDF/commit/71ad2dbfa6c7c189ab42b855b782620fa8a38375"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/releases/tag/v4.2.0",
"url": "https://github.com/parallax/jsPDF/releases/tag/v4.2.0"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/security/advisories/GHSA-p5xg-68wr-hm3m",
"url": "https://github.com/parallax/jsPDF/security/advisories/GHSA-p5xg-68wr-hm3m"
}
],
"release_date": "2026-02-19T15:26:57.645000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T17:43:53+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7128"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, sanitize the user-provided input before passing it to the AcroformChildClass.appearanceState property or other API members. Additionally, do not open PDF documents from untrusted sources.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.6,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "jsPDF: PDF injection in AcroForm module allows arbitrary JavaScript execution (RadioButton children)"
},
{
"cve": "CVE-2026-26278",
"cwe": {
"id": "CWE-776",
"name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
},
"discovery_date": "2026-02-19T21:03:33.363864+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2441120"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by providing a specially crafted, small XML input. This input can force the XML parser to perform an unlimited amount of entity expansion, consuming excessive resources. This can lead to the application freezing for an extended period, resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: fast-xml-parser: Denial of Service via unlimited XML entity expansion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-26278"
},
{
"category": "external",
"summary": "RHBZ#2441120",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2441120"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-26278",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-26278"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-26278",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-26278"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/910dae5be2de2955e968558fadf6e8f74f117a77",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/910dae5be2de2955e968558fadf6e8f74f117a77"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.6",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.6"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-jmr7-xgp7-cmfj",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-jmr7-xgp7-cmfj"
}
],
"release_date": "2026-02-19T19:40:55.842000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T17:43:53+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7128"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "fast-xml-parser: fast-xml-parser: Denial of Service via unlimited XML entity expansion"
},
{
"cve": "CVE-2026-27942",
"cwe": {
"id": "CWE-776",
"name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
},
"discovery_date": "2026-02-26T03:01:53.367202+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2442938"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in fast-xml-parser. A user can exploit this flaw by processing specially crafted XML data with the XML builder when the `preserveOrder` option is enabled. This can lead to a stack overflow, causing the application to crash and resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: fast-xml-parser: Stack overflow leads to Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The flaw affects the XML builder component of the fast-xml-parser library and is triggered only when the preserveOrder option is explicitly enabled. In Red Hat\u2013shipped configurations, this option is not enabled by default, and the vulnerable code path is therefore not exercised under typical deployments.\nThe underlying issue results in uncontrolled recursion leading to a stack overflow condition, which causes the application to terminate unexpectedly. While this can be triggered via crafted input, the impact is limited strictly to denial of service (DoS) and does not provide a mechanism for arbitrary code execution, privilege escalation, or data disclosure.\nFurthermore, exploitation requires that the affected application processes attacker-controlled XML input through the XML builder functionality with the specific vulnerable configuration enabled. This significantly reduces the attack surface and introduces environmental constraints not considered in the generalized NVD scoring.\n\nGiven the absence of confidentiality and integrity impact, the requirement for non-default configuration, and the limitation of the impact to process termination, Red Hat considers the practical risk to be lower than the NVD assessment. As such, this issue is classified as Moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27942"
},
{
"category": "external",
"summary": "RHBZ#2442938",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2442938"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27942",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27942"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27942",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27942"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/c13a961910f14986295dd28484eee830fa1a0e8a",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/c13a961910f14986295dd28484eee830fa1a0e8a"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/pull/791",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/pull/791"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-fj3w-jwp8-x2g3",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-fj3w-jwp8-x2g3"
}
],
"release_date": "2026-02-26T01:22:11.383000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T17:43:53+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7128"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, configure applications using the `fast-xml-parser` XML builder to set the `preserveOrder` option to `false`. Alternatively, ensure that all XML input data is thoroughly validated before being passed to the builder to prevent the processing of malicious or malformed content.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "fast-xml-parser: fast-xml-parser: Stack overflow leads to Denial of Service"
},
{
"cve": "CVE-2026-31898",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"discovery_date": "2026-03-18T04:02:12.103945+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2448547"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in jsPDF, a JavaScript library used for generating PDF documents. This vulnerability allows a remote attacker to inject arbitrary PDF objects, including JavaScript actions, into a generated PDF. This can occur if unsanitized user input is provided to the `createAnnotation` method\u0027s `color` parameter. When a user opens or interacts with the specially crafted PDF, these injected actions may execute, potentially leading to arbitrary code execution or sensitive information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jspdf: jsPDF: Arbitrary code execution via unsanitized input in createAnnotation method",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-31898"
},
{
"category": "external",
"summary": "RHBZ#2448547",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2448547"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-31898",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-31898"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-31898",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-31898"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/blob/b1607a9391d4cd65ea7ade25998aea8345ae1be3/src/modules/annotations.js#L193-L208",
"url": "https://github.com/parallax/jsPDF/blob/b1607a9391d4cd65ea7ade25998aea8345ae1be3/src/modules/annotations.js#L193-L208"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/commit/4155c4819d5eca284168e51e0e1e81126b4f14b8",
"url": "https://github.com/parallax/jsPDF/commit/4155c4819d5eca284168e51e0e1e81126b4f14b8"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/releases/tag/v4.2.1",
"url": "https://github.com/parallax/jsPDF/releases/tag/v4.2.1"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/security/advisories/GHSA-7x6v-j9x4-qf24",
"url": "https://github.com/parallax/jsPDF/security/advisories/GHSA-7x6v-j9x4-qf24"
}
],
"release_date": "2026-03-18T03:03:43.469000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T17:43:53+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7128"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "jspdf: jsPDF: Arbitrary code execution via unsanitized input in createAnnotation method"
},
{
"cve": "CVE-2026-31938",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2026-03-18T04:02:27.320536+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2448550"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in jsPDF, a JavaScript library for generating PDFs. A remote attacker can exploit this vulnerability by providing malicious input to the `options` argument of the `output` function. When a victim creates and opens a PDF using this unsanitized input, arbitrary HTML, including scripts, can be injected and executed within the victim\u0027s browser context. This Cross-Site Scripting (XSS) vulnerability allows the attacker to extract or modify sensitive information from the victim\u0027s browser.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jspdf: jsPDF: Cross site scripting via unsanitized output options",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-31938"
},
{
"category": "external",
"summary": "RHBZ#2448550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2448550"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-31938",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-31938"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-31938",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-31938"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/commit/87a40bbd07e6b30575196370670b41f264aa78d7",
"url": "https://github.com/parallax/jsPDF/commit/87a40bbd07e6b30575196370670b41f264aa78d7"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/releases/tag/v4.2.1",
"url": "https://github.com/parallax/jsPDF/releases/tag/v4.2.1"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/security/advisories/GHSA-wfv2-pwc8-crg5",
"url": "https://github.com/parallax/jsPDF/security/advisories/GHSA-wfv2-pwc8-crg5"
}
],
"release_date": "2026-03-18T03:05:44.964000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T17:43:53+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7128"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "jspdf: jsPDF: Cross site scripting via unsanitized output options"
},
{
"cve": "CVE-2026-33036",
"cwe": {
"id": "CWE-776",
"name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
},
"discovery_date": "2026-03-20T06:02:18.306021+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2449458"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by supplying specially crafted XML input containing numeric character references or standard XML entities. This input can bypass configured entity expansion limits, leading to excessive memory allocation and high CPU usage. The primary consequence is a Denial of Service (DoS), which can crash the affected process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: fast-xml-parser: Denial of Service via XML entity expansion bypass",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33036"
},
{
"category": "external",
"summary": "RHBZ#2449458",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449458"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33036",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33036"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33036",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33036"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/bd26122c838e6a55e7d7ac49b4ccc01a49999a01",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/bd26122c838e6a55e7d7ac49b4ccc01a49999a01"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.5.6",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.5.6"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-8gc5-j5rx-235r",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-8gc5-j5rx-235r"
}
],
"release_date": "2026-03-20T05:17:03.290000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T17:43:53+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7128"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "fast-xml-parser: fast-xml-parser: Denial of Service via XML entity expansion bypass"
},
{
"cve": "CVE-2026-33186",
"cwe": {
"id": "CWE-551",
"name": "Incorrect Behavior Order: Authorization Before Parsing and Canonicalization"
},
"discovery_date": "2026-03-20T23:02:27.802640+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2449833"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "RHBZ#2449833",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33186",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33186"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3",
"url": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3"
}
],
"release_date": "2026-03-20T22:23:32.147000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T17:43:53+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7128"
},
{
"category": "workaround",
"details": "To mitigate this issue, implement infrastructure-level normalization to ensure all incoming HTTP/2 `:path` headers are properly formatted with a leading slash before reaching the gRPC-Go server. This can be achieved by configuring a reverse proxy or API gateway to validate and normalize the `:path` header. Ensure that any such intermediary is properly configured and restarted to apply the changes, which may temporarily impact service availability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:0fa1b2d7000300a498354f90854e977b104acd7368b55043954027e083330cc7_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:38d7d3976b8dab7c57fa3d836d728d7d8dd4c3708f3ad752f4b7bd8e5e5d9fdb_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:6e95dd436f536f5688e495bb0e4e157ab88082b39088a203624886167be59e16_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:970d5dd053921bbe36ba72ea7a44792eeb3d985fd086e54e718a484e21c3238f_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0e5f83114a1e501dbcb23de8b8fd2c5b8470feab7cee2304da74c65ecfc37c2c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:4e53d49c420aad901e790faff75cb863a5940c75f4ae9222d252cb1184a61032_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:5e598218aea7b7113132dbeafd981ba7be652452efde8ca1bcef0ab780bc3f26_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:7afa1136b9335128f9edefa4f01138d8f52eb0825a6b1bdc5de1d2af23ad37b4_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:433c4926f5a93402642d459c627a1ecf65e101a42bcce4042c36858205b93be9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:96d11ff01950830eac7df626092e231ab3ff78f678fb6ddb3e88bf58dd2bda65_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:e4554b911cb8df3f181ae1c3e8d3d69b2feb2985f71de1e782575b4f92165f96_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:f6c3977c2d562656928aa1b8477b98174a8d26db903954bdfc766cc8dfc17c7d_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:9f24219801a7240ecf7a08ed16f837adf7166b53a3a32ddab932a144a36b7ebf_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:04d163e1994dec3630cdf2f5b7a4d903369b5e36fcb7b2ab8c65300fa410d541_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:27e501a85a6008eca7284c56c248a72adc62e5c8a918f1455bf0f3c22dd6e1d4_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:ad7fad31ecb272845bd5e2e2a37598ccc97d5d88d250dc4bc67e7d26973fcd6b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:b092ad0814533fec4198ebd3f62a74c45801b0f8c167afb095b0aba7054f50da_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:56b6a1298a529b756765c844cd09e6201a7b5caca2cdf8d88a28814628585fa9_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:86a0e2ae3e5ad51ad5157216ce3c88fdaf4d9761c52083d4f1f4f76e0b223d6e_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a4d435b3cd591330f60ac1198421ce870aa26f6204145431c0de9af4f7237b2d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a524c2fe87dbe91b9972ad219f226ed7ea6e37af18a55e1568ae06a886b77f89_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:399e4a7cd54180ebdfc032f604d32323c4d37ac073a05931ab515970531a6528_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4e4a7bc8db8e40a45974038fb8aa0345f9327d15ae0374d07c9b53e37ffadaab_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:9023f51ebcc39adb0d1f7fcce2d7104b1ae00c4b1c69f055c33c07256a8976a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:baee5d07635ef3035b4f64910f5e5ae9d718cdd75e720c4ca0d74b98f4ca6fbf_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:2df8ad9a2eca2a463edc913886cfe495cb7d801b224ed8d331954517f4101eb1_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:57c63eeb0553e2589ff009ea4282fc604a80a219c5aa9c5249c86c67ceef0e1b_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:81b432dd922d7408be4661517abfa3fd203899749c2e18f101c08f090663d5ad_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:8815b798e4ae3b11694dda0a577e15b10885185a71375100fd68b4e09b3330fa_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:3114362de56dc97a9e3790d9cf1636bae69e91575eef33b4e6d21212010e2829_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:b6e61f71cc64819c7c427a2de93d5e4700deafd5e6045588627c5b5b78942cd5_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:d1d31953836e40908b82b037f5641d0a67a8e247024592d0eccf35c4ebdce336_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e26e1bc1616b64d275654c7008e84d9228cc7382d17a46f7cfd7a001b3a40af5_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2d14ae518b1d571ac6fef7120d683b8de2f140f6c183f6f8e89896e954a0f4dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:6717ba500df4569760009ba9afcce1b4fc0ad274da2a4640df910d3523f4585d_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:67303bf30b677847afc4b0407feed0315efd174360e0d83f51b26432edb2533e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:a961c4b590e0628705ef9febfb97d5c6a294188d06db3733f4119b158b0584cb_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:981235a1d6f2788bb7c8fd729c0211e937cd2d8f2de1edeb2c492c506df5b790_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:bd121fbb2925ec8b0880de8e867a0407006c1ceceae0703c7c4dafcdf5ae48b3_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:d42306d76f1ef70e66bfd0b56b4e267df5f8e616442cb94fe066031dfec832ae_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:dc37373dbc9e947cd30672ce06f4ce6c356172bd616a281d6532724cdddc5a2b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:145e7b65e3d01210bfa07bb3e286c29e1d9218b38ec78c4e97557cba6ec4c14b_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:3543c30e948798589f524257534f061ede88462678b9e4946efd54ac37ead3ad_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:a2840c33be901c656235847f55ece04b3a0f8cd2c5d303a21ae5241beab2e7db_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.9:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:c435106c4bc0ab943b8967827aff540f57174f7a0c27df6879db9ec587dfe3fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation"
}
]
}
RHSA-2026:7110
Vulnerability from csaf_redhat - Published: 2026-04-08 16:37 - Updated: 2026-04-08 20:49Summary
Red Hat Security Advisory: RHACS 4.8.10 security and bug fix update
Severity
Important
Notes
Topic: Updated images are now available for Red Hat Advanced Cluster Security
(RHACS), which typically include new features, bug fixes, and/or
security patches.
Details: See the release notes (link in the references section) for a
description of the fixes and enhancements in this particular release.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A denial of service flaw has been discovered in the fast-xml-parser npm library. In fast-xml-parser, a RangeError vulnerability exists in the numeric entity processing of fast-xml-parser when parsing XML with out-of-range entity code points (e.g., `�` or `�`). This causes the parser to throw an uncaught exception, crashing any application that processes untrusted XML input.
5.3 (Medium)
Vendor Fix
If you are using an earlier version of RHACS, you are advised to
upgrade to the version of RHACS mentioned in the synopsis and release
notes in order to take advantage of the enhancements, bug fixes, and/or
security patches in the release.
https://access.redhat.com/errata/RHSA-2026:7110
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
A flaw was found in jsPDF. The addImage and html methods accept user input in their first argument without proper sanitization. An attacker can supply a specially crafted GIF file, specifically with invalid width and height header values, forcing the application to allocate an excessive amount of memory, leading to an out-of-memory condition, causing an application crash and denial of service.
7.5 (High)
Vendor Fix
If you are using an earlier version of RHACS, you are advised to
upgrade to the version of RHACS mentioned in the synopsis and release
notes in order to take advantage of the enhancements, bug fixes, and/or
security patches in the release.
https://access.redhat.com/errata/RHSA-2026:7110
Workaround
To mitigate this vulnerability, sanitize image data or validate resources fetched from URLs before calling the addImage or html methods, making sure that the width and height header values do not exceed safe and predefined limits.
A flaw was found in jsPDF. The addJS method accepts user input without proper sanitization, allowing an attacker to inject arbitrary PDF objects into the document. A specially crafted payload that escapes the JavaScript string delimiter can execute malicious actions or alter the document structure, resulting in arbitrary code execution when a user opens a PDF with a viewer that supports embedded scripts.
9.6 (Critical)
Vendor Fix
If you are using an earlier version of RHACS, you are advised to
upgrade to the version of RHACS mentioned in the synopsis and release
notes in order to take advantage of the enhancements, bug fixes, and/or
security patches in the release.
https://access.redhat.com/errata/RHSA-2026:7110
Workaround
To mitigate this vulnerability, sanitize the user-provided JavaScript code before passing it to the addJS method by strictly escaping backslashes and parentheses. Additionally, do not open PDF documents from untrusted sources.
A flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by providing a specially crafted XML input. The system incorrectly interprets a dot in a DOCTYPE entity name as a regular expression wildcard during processing. This allows the attacker to bypass security measures and inject malicious scripts, resulting in Cross-Site Scripting (XSS) when the parsed output is displayed to users.
7.1 (High)
Vendor Fix
If you are using an earlier version of RHACS, you are advised to
upgrade to the version of RHACS mentioned in the synopsis and release
notes in order to take advantage of the enhancements, bug fixes, and/or
security patches in the release.
https://access.redhat.com/errata/RHSA-2026:7110
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
A flaw was found in jsPDF. The properties and methods of the Acroform module accept user input without sanitization, allowing an attacker to inject arbitrary PDF objects, such as JavaScript actions. Specifically, if an attacker can supply a specially crafted input to the AcroformChildClass.appearanceState property, JavaScript actions can be executed when a user opens the generated PDF document and hovers over the radio button.
9.6 (Critical)
Vendor Fix
If you are using an earlier version of RHACS, you are advised to
upgrade to the version of RHACS mentioned in the synopsis and release
notes in order to take advantage of the enhancements, bug fixes, and/or
security patches in the release.
https://access.redhat.com/errata/RHSA-2026:7110
Workaround
To mitigate this vulnerability, sanitize the user-provided input before passing it to the AcroformChildClass.appearanceState property or other API members. Additionally, do not open PDF documents from untrusted sources.
A denial of service flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by providing a specially crafted, small XML input. This input can force the XML parser to perform an unlimited amount of entity expansion, consuming excessive resources. This can lead to the application freezing for an extended period, resulting in a Denial of Service (DoS).
7.5 (High)
Vendor Fix
If you are using an earlier version of RHACS, you are advised to
upgrade to the version of RHACS mentioned in the synopsis and release
notes in order to take advantage of the enhancements, bug fixes, and/or
security patches in the release.
https://access.redhat.com/errata/RHSA-2026:7110
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
A flaw was found in fast-xml-parser. A user can exploit this flaw by processing specially crafted XML data with the XML builder when the `preserveOrder` option is enabled. This can lead to a stack overflow, causing the application to crash and resulting in a Denial of Service (DoS).
7.5 (High)
Vendor Fix
If you are using an earlier version of RHACS, you are advised to
upgrade to the version of RHACS mentioned in the synopsis and release
notes in order to take advantage of the enhancements, bug fixes, and/or
security patches in the release.
https://access.redhat.com/errata/RHSA-2026:7110
Workaround
To mitigate this vulnerability, configure applications using the `fast-xml-parser` XML builder to set the `preserveOrder` option to `false`. Alternatively, ensure that all XML input data is thoroughly validated before being passed to the builder to prevent the processing of malicious or malformed content.
A flaw was found in SVGO, an SVG (Scalable Vector Graphics) Optimizer. This vulnerability allows a remote attacker to cause a Denial of Service (DoS) by submitting a specially crafted XML file. The application's failure to properly guard against XML entity expansion or recursion can lead to the Node.js process consuming excessive memory and crashing.
7.5 (High)
Vendor Fix
If you are using an earlier version of RHACS, you are advised to
upgrade to the version of RHACS mentioned in the synopsis and release
notes in order to take advantage of the enhancements, bug fixes, and/or
security patches in the release.
https://access.redhat.com/errata/RHSA-2026:7110
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
A flaw was found in jsPDF, a JavaScript library used for generating PDF documents. This vulnerability allows a remote attacker to inject arbitrary PDF objects, including JavaScript actions, into a generated PDF. This can occur if unsanitized user input is provided to the `createAnnotation` method's `color` parameter. When a user opens or interacts with the specially crafted PDF, these injected actions may execute, potentially leading to arbitrary code execution or sensitive information disclosure.
8.1 (High)
Vendor Fix
If you are using an earlier version of RHACS, you are advised to
upgrade to the version of RHACS mentioned in the synopsis and release
notes in order to take advantage of the enhancements, bug fixes, and/or
security patches in the release.
https://access.redhat.com/errata/RHSA-2026:7110
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
A flaw was found in jsPDF, a JavaScript library for generating PDFs. A remote attacker can exploit this vulnerability by providing malicious input to the `options` argument of the `output` function. When a victim creates and opens a PDF using this unsanitized input, arbitrary HTML, including scripts, can be injected and executed within the victim's browser context. This Cross-Site Scripting (XSS) vulnerability allows the attacker to extract or modify sensitive information from the victim's browser.
8.1 (High)
Vendor Fix
If you are using an earlier version of RHACS, you are advised to
upgrade to the version of RHACS mentioned in the synopsis and release
notes in order to take advantage of the enhancements, bug fixes, and/or
security patches in the release.
https://access.redhat.com/errata/RHSA-2026:7110
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
A flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by supplying specially crafted XML input containing numeric character references or standard XML entities. This input can bypass configured entity expansion limits, leading to excessive memory allocation and high CPU usage. The primary consequence is a Denial of Service (DoS), which can crash the affected process.
7.5 (High)
Vendor Fix
If you are using an earlier version of RHACS, you are advised to
upgrade to the version of RHACS mentioned in the synopsis and release
notes in order to take advantage of the enhancements, bug fixes, and/or
security patches in the release.
https://access.redhat.com/errata/RHSA-2026:7110
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.
A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.
8.1 (High)
Vendor Fix
If you are using an earlier version of RHACS, you are advised to
upgrade to the version of RHACS mentioned in the synopsis and release
notes in order to take advantage of the enhancements, bug fixes, and/or
security patches in the release.
https://access.redhat.com/errata/RHSA-2026:7110
Workaround
To mitigate this issue, implement infrastructure-level normalization to ensure all incoming HTTP/2 `:path` headers are properly formatted with a leading slash before reaching the gRPC-Go server. This can be achieved by configuring a reverse proxy or API gateway to validate and normalize the `:path` header. Ensure that any such intermediary is properly configured and restarted to apply the changes, which may temporarily impact service availability.
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images are now available for Red Hat Advanced Cluster Security\n(RHACS), which typically include new features, bug fixes, and/or\nsecurity patches.",
"title": "Topic"
},
{
"category": "general",
"text": "See the release notes (link in the references section) for a\ndescription of the fixes and enhancements in this particular release.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:7110",
"url": "https://access.redhat.com/errata/RHSA-2026:7110"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25128",
"url": "https://access.redhat.com/security/cve/CVE-2026-25128"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25535",
"url": "https://access.redhat.com/security/cve/CVE-2026-25535"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25755",
"url": "https://access.redhat.com/security/cve/CVE-2026-25755"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25896",
"url": "https://access.redhat.com/security/cve/CVE-2026-25896"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25940",
"url": "https://access.redhat.com/security/cve/CVE-2026-25940"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-26278",
"url": "https://access.redhat.com/security/cve/CVE-2026-26278"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27942",
"url": "https://access.redhat.com/security/cve/CVE-2026-27942"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-29074",
"url": "https://access.redhat.com/security/cve/CVE-2026-29074"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-31898",
"url": "https://access.redhat.com/security/cve/CVE-2026-31898"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-31938",
"url": "https://access.redhat.com/security/cve/CVE-2026-31938"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33036",
"url": "https://access.redhat.com/security/cve/CVE-2026-33036"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33186",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.8/html-single/release_notes/index#about-this-release-4810_release-notes-48",
"url": "https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_security_for_kubernetes/4.8/html-single/release_notes/index#about-this-release-4810_release-notes-48"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_7110.json"
}
],
"title": "Red Hat Security Advisory: RHACS 4.8.10 security and bug fix update",
"tracking": {
"current_release_date": "2026-04-08T20:49:49+00:00",
"generator": {
"date": "2026-04-08T20:49:49+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.5"
}
},
"id": "RHSA-2026:7110",
"initial_release_date": "2026-04-08T16:37:57+00:00",
"revision_history": [
{
"date": "2026-04-08T16:37:57+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-08T16:38:07+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-04-08T20:49:49+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product": {
"name": "Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:advanced_cluster_security:4.8::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Advanced Cluster Security for Kubernetes"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3A8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256%3Ac0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774163438"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256%3A5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256%3A4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-operator-bundle@sha256%3A66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3A9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3Ae5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3Abe836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3A62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3Adb5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3A579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3Abe770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa?arch=amd64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3A9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256%3Aaede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774163438"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256%3Ad9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256%3Ac6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3A4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3A5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3Af717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3A4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3A3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3A95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3A2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e?arch=arm64\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3Acb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256%3A0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774163438"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256%3A8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256%3A5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3A07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3A9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3A4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3Ab774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3Aeba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3A6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3A1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7?arch=ppc64le\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-central-db-rhel8@sha256%3A72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-collector-rhel8@sha256%3A16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774163438"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-main-rhel8@sha256%3Ac7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-rhel8-operator@sha256%3A81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-roxctl-rhel8@sha256%3A2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-rhel8@sha256%3A16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-rhel8@sha256%3A2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-db-slim-rhel8@sha256%3A3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-slim-rhel8@sha256%3A2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1774294180"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-rhel8@sha256%3Ae9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"product": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"product_id": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhacs-scanner-v4-db-rhel8@sha256%3A714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47?arch=s390x\u0026repository_url=registry.redhat.io/advanced-cluster-security\u0026tag=1775594119"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64 as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x as a component of Red Hat Advanced Cluster Security for Kubernetes 4.8",
"product_id": "Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
},
"product_reference": "registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x",
"relates_to_product_reference": "Red Hat Advanced Cluster Security for Kubernetes 4.8"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-25128",
"cwe": {
"id": "CWE-248",
"name": "Uncaught Exception"
},
"discovery_date": "2026-01-30T16:01:27.320561+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2435497"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service flaw has been discovered in the fast-xml-parser npm library. In fast-xml-parser, a RangeError vulnerability exists in the numeric entity processing of fast-xml-parser when parsing XML with out-of-range entity code points (e.g., `\u0026#9999999;` or `\u0026#xFFFFFF;`). This causes the parser to throw an uncaught exception, crashing any application that processes untrusted XML input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: fast-xml-parser has RangeError DoS Numeric Entities Bug",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The availability impact of this flaw is limited to the application which bundles the fast-xml-parser library. Red Hat host systems are not at risk of availability impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25128"
},
{
"category": "external",
"summary": "RHBZ#2435497",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2435497"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25128",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25128"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25128",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25128"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/4e387f61c4a5cef792f6a2f42467013290bf95dc",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/4e387f61c4a5cef792f6a2f42467013290bf95dc"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.4",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.4"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-37qj-frw5-hhjh",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-37qj-frw5-hhjh"
}
],
"release_date": "2026-01-30T15:14:58.244000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T16:37:57+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7110"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "fast-xml-parser: fast-xml-parser has RangeError DoS Numeric Entities Bug"
},
{
"cve": "CVE-2026-25535",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-02-19T15:01:17.455095+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2440992"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in jsPDF. The addImage and html methods accept user input in their first argument without proper sanitization. An attacker can supply a specially crafted GIF file, specifically with invalid width and height header values, forcing the application to allocate an excessive amount of memory, leading to an out-of-memory condition, causing an application crash and denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jsPDF: denial of service via malicious GIF dimensions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to process a specially crafted GIF file with an application using the addImage or html methods. This issue can cause the application to allocate an excessive amount of memory, eventually resulting in a denial of service with no other security impact. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25535"
},
{
"category": "external",
"summary": "RHBZ#2440992",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2440992"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25535",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25535"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25535",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25535"
},
{
"category": "external",
"summary": "https://github.com/ZeroXJacks/CVEs/blob/main/2026/CVE-2026-25535.md",
"url": "https://github.com/ZeroXJacks/CVEs/blob/main/2026/CVE-2026-25535.md"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/commit/2e5e156e284d92c7d134bce97e6418756941d5e6",
"url": "https://github.com/parallax/jsPDF/commit/2e5e156e284d92c7d134bce97e6418756941d5e6"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/releases/tag/v4.2.0",
"url": "https://github.com/parallax/jsPDF/releases/tag/v4.2.0"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/security/advisories/GHSA-67pg-wm7f-q7fj",
"url": "https://github.com/parallax/jsPDF/security/advisories/GHSA-67pg-wm7f-q7fj"
}
],
"release_date": "2026-02-19T14:34:05.648000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T16:37:57+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7110"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, sanitize image data or validate resources fetched from URLs before calling the addImage or html methods, making sure that the width and height header values do not exceed safe and predefined limits.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "jsPDF: denial of service via malicious GIF dimensions"
},
{
"cve": "CVE-2026-25755",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"discovery_date": "2026-02-19T15:01:21.761677+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2440993"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in jsPDF. The addJS method accepts user input without proper sanitization, allowing an attacker to inject arbitrary PDF objects into the document. A specially crafted payload that escapes the JavaScript string delimiter can execute malicious actions or alter the document structure, resulting in arbitrary code execution when a user opens a PDF with a viewer that supports embedded scripts.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jsPDF: PDF object injection via unsanitized input in addJS method",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to supply a specially crafted payload to the application using the addJS method and convince a user to open the generated PDF document with a viewer that supports embedded scripts. Due to these reasons, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25755"
},
{
"category": "external",
"summary": "RHBZ#2440993",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2440993"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25755",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25755"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25755",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25755"
},
{
"category": "external",
"summary": "https://github.com/ZeroXJacks/CVEs/blob/main/2026/CVE-2026-25755.md",
"url": "https://github.com/ZeroXJacks/CVEs/blob/main/2026/CVE-2026-25755.md"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/commit/56b46d45b052346f5995b005a34af5dcdddd5437",
"url": "https://github.com/parallax/jsPDF/commit/56b46d45b052346f5995b005a34af5dcdddd5437"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/releases/tag/v4.2.0",
"url": "https://github.com/parallax/jsPDF/releases/tag/v4.2.0"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/security/advisories/GHSA-9vjf-qc39-jprp",
"url": "https://github.com/parallax/jsPDF/security/advisories/GHSA-9vjf-qc39-jprp"
}
],
"release_date": "2026-02-19T14:41:46.941000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T16:37:57+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7110"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, sanitize the user-provided JavaScript code before passing it to the addJS method by strictly escaping backslashes and parentheses. Additionally, do not open PDF documents from untrusted sources.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.6,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "jsPDF: PDF object injection via unsanitized input in addJS method"
},
{
"cve": "CVE-2026-25896",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2026-02-20T22:01:59.622413+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2441501"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by providing a specially crafted XML input. The system incorrectly interprets a dot in a DOCTYPE entity name as a regular expression wildcard during processing. This allows the attacker to bypass security measures and inject malicious scripts, resulting in Cross-Site Scripting (XSS) when the parsed output is displayed to users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: fast-xml-parser: Cross-Site Scripting (XSS) due to improper DOCTYPE entity handling",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw has been assessed as IMPORTANT for Red Hat products. This vulnerability arises when the parsed XML output is subsequently rendered to users which requires the interaction of the user. The impact of this flaw is also limited to the user\u0027s browser context.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25896"
},
{
"category": "external",
"summary": "RHBZ#2441501",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2441501"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25896",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25896"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25896",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25896"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/943ef0eb1b2d3284e72dd74f44a042ee9f07026e",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/943ef0eb1b2d3284e72dd74f44a042ee9f07026e"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/ddcd0acf26ddd682cb0dc15a2bd6aa3b96bb1e69",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/ddcd0acf26ddd682cb0dc15a2bd6aa3b96bb1e69"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.5",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.5"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-m7jm-9gc2-mpf2",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-m7jm-9gc2-mpf2"
}
],
"release_date": "2026-02-20T20:57:48.074000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T16:37:57+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7110"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "fast-xml-parser: fast-xml-parser: Cross-Site Scripting (XSS) due to improper DOCTYPE entity handling"
},
{
"cve": "CVE-2026-25940",
"cwe": {
"id": "CWE-116",
"name": "Improper Encoding or Escaping of Output"
},
"discovery_date": "2026-02-19T16:04:06.757217+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2441016"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in jsPDF. The properties and methods of the Acroform module accept user input without sanitization, allowing an attacker to inject arbitrary PDF objects, such as JavaScript actions. Specifically, if an attacker can supply a specially crafted input to the AcroformChildClass.appearanceState property, JavaScript actions can be executed when a user opens the generated PDF document and hovers over the radio button.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jsPDF: PDF injection in AcroForm module allows arbitrary JavaScript execution (RadioButton children)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to supply a specially crafted input to the AcroformChildClass.appearanceState property of the Acroform module and convince a user to open the generated PDF document, resulting in arbitrary JavaScript execution when the user interacts with radio buttons. Due to these reasons, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25940"
},
{
"category": "external",
"summary": "RHBZ#2441016",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2441016"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25940",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25940"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25940",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25940"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/commit/71ad2dbfa6c7c189ab42b855b782620fa8a38375",
"url": "https://github.com/parallax/jsPDF/commit/71ad2dbfa6c7c189ab42b855b782620fa8a38375"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/releases/tag/v4.2.0",
"url": "https://github.com/parallax/jsPDF/releases/tag/v4.2.0"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/security/advisories/GHSA-p5xg-68wr-hm3m",
"url": "https://github.com/parallax/jsPDF/security/advisories/GHSA-p5xg-68wr-hm3m"
}
],
"release_date": "2026-02-19T15:26:57.645000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T16:37:57+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7110"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, sanitize the user-provided input before passing it to the AcroformChildClass.appearanceState property or other API members. Additionally, do not open PDF documents from untrusted sources.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.6,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "jsPDF: PDF injection in AcroForm module allows arbitrary JavaScript execution (RadioButton children)"
},
{
"cve": "CVE-2026-26278",
"cwe": {
"id": "CWE-776",
"name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
},
"discovery_date": "2026-02-19T21:03:33.363864+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2441120"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by providing a specially crafted, small XML input. This input can force the XML parser to perform an unlimited amount of entity expansion, consuming excessive resources. This can lead to the application freezing for an extended period, resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: fast-xml-parser: Denial of Service via unlimited XML entity expansion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-26278"
},
{
"category": "external",
"summary": "RHBZ#2441120",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2441120"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-26278",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-26278"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-26278",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-26278"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/910dae5be2de2955e968558fadf6e8f74f117a77",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/910dae5be2de2955e968558fadf6e8f74f117a77"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.6",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.3.6"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-jmr7-xgp7-cmfj",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-jmr7-xgp7-cmfj"
}
],
"release_date": "2026-02-19T19:40:55.842000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T16:37:57+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7110"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "fast-xml-parser: fast-xml-parser: Denial of Service via unlimited XML entity expansion"
},
{
"cve": "CVE-2026-27942",
"cwe": {
"id": "CWE-776",
"name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
},
"discovery_date": "2026-02-26T03:01:53.367202+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2442938"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in fast-xml-parser. A user can exploit this flaw by processing specially crafted XML data with the XML builder when the `preserveOrder` option is enabled. This can lead to a stack overflow, causing the application to crash and resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: fast-xml-parser: Stack overflow leads to Denial of Service",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The flaw affects the XML builder component of the fast-xml-parser library and is triggered only when the preserveOrder option is explicitly enabled. In Red Hat\u2013shipped configurations, this option is not enabled by default, and the vulnerable code path is therefore not exercised under typical deployments.\nThe underlying issue results in uncontrolled recursion leading to a stack overflow condition, which causes the application to terminate unexpectedly. While this can be triggered via crafted input, the impact is limited strictly to denial of service (DoS) and does not provide a mechanism for arbitrary code execution, privilege escalation, or data disclosure.\nFurthermore, exploitation requires that the affected application processes attacker-controlled XML input through the XML builder functionality with the specific vulnerable configuration enabled. This significantly reduces the attack surface and introduces environmental constraints not considered in the generalized NVD scoring.\n\nGiven the absence of confidentiality and integrity impact, the requirement for non-default configuration, and the limitation of the impact to process termination, Red Hat considers the practical risk to be lower than the NVD assessment. As such, this issue is classified as Moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27942"
},
{
"category": "external",
"summary": "RHBZ#2442938",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2442938"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27942",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27942"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27942",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27942"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/c13a961910f14986295dd28484eee830fa1a0e8a",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/c13a961910f14986295dd28484eee830fa1a0e8a"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/pull/791",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/pull/791"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-fj3w-jwp8-x2g3",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-fj3w-jwp8-x2g3"
}
],
"release_date": "2026-02-26T01:22:11.383000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T16:37:57+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7110"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, configure applications using the `fast-xml-parser` XML builder to set the `preserveOrder` option to `false`. Alternatively, ensure that all XML input data is thoroughly validated before being passed to the builder to prevent the processing of malicious or malformed content.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "fast-xml-parser: fast-xml-parser: Stack overflow leads to Denial of Service"
},
{
"cve": "CVE-2026-29074",
"cwe": {
"id": "CWE-776",
"name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
},
"discovery_date": "2026-03-06T08:01:07.142613+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445132"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in SVGO, an SVG (Scalable Vector Graphics) Optimizer. This vulnerability allows a remote attacker to cause a Denial of Service (DoS) by submitting a specially crafted XML file. The application\u0027s failure to properly guard against XML entity expansion or recursion can lead to the Node.js process consuming excessive memory and crashing.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "svgo: SVGO: Denial of Service via XML entity expansion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-29074"
},
{
"category": "external",
"summary": "RHBZ#2445132",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445132"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-29074",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-29074"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-29074",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-29074"
},
{
"category": "external",
"summary": "https://github.com/svg/svgo/security/advisories/GHSA-xpqw-6gx7-v673",
"url": "https://github.com/svg/svgo/security/advisories/GHSA-xpqw-6gx7-v673"
}
],
"release_date": "2026-03-06T07:23:05.716000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T16:37:57+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7110"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "svgo: SVGO: Denial of Service via XML entity expansion"
},
{
"cve": "CVE-2026-31898",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"discovery_date": "2026-03-18T04:02:12.103945+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2448547"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in jsPDF, a JavaScript library used for generating PDF documents. This vulnerability allows a remote attacker to inject arbitrary PDF objects, including JavaScript actions, into a generated PDF. This can occur if unsanitized user input is provided to the `createAnnotation` method\u0027s `color` parameter. When a user opens or interacts with the specially crafted PDF, these injected actions may execute, potentially leading to arbitrary code execution or sensitive information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jspdf: jsPDF: Arbitrary code execution via unsanitized input in createAnnotation method",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-31898"
},
{
"category": "external",
"summary": "RHBZ#2448547",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2448547"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-31898",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-31898"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-31898",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-31898"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/blob/b1607a9391d4cd65ea7ade25998aea8345ae1be3/src/modules/annotations.js#L193-L208",
"url": "https://github.com/parallax/jsPDF/blob/b1607a9391d4cd65ea7ade25998aea8345ae1be3/src/modules/annotations.js#L193-L208"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/commit/4155c4819d5eca284168e51e0e1e81126b4f14b8",
"url": "https://github.com/parallax/jsPDF/commit/4155c4819d5eca284168e51e0e1e81126b4f14b8"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/releases/tag/v4.2.1",
"url": "https://github.com/parallax/jsPDF/releases/tag/v4.2.1"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/security/advisories/GHSA-7x6v-j9x4-qf24",
"url": "https://github.com/parallax/jsPDF/security/advisories/GHSA-7x6v-j9x4-qf24"
}
],
"release_date": "2026-03-18T03:03:43.469000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T16:37:57+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7110"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "jspdf: jsPDF: Arbitrary code execution via unsanitized input in createAnnotation method"
},
{
"cve": "CVE-2026-31938",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2026-03-18T04:02:27.320536+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2448550"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in jsPDF, a JavaScript library for generating PDFs. A remote attacker can exploit this vulnerability by providing malicious input to the `options` argument of the `output` function. When a victim creates and opens a PDF using this unsanitized input, arbitrary HTML, including scripts, can be injected and executed within the victim\u0027s browser context. This Cross-Site Scripting (XSS) vulnerability allows the attacker to extract or modify sensitive information from the victim\u0027s browser.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jspdf: jsPDF: Cross site scripting via unsanitized output options",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-31938"
},
{
"category": "external",
"summary": "RHBZ#2448550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2448550"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-31938",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-31938"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-31938",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-31938"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/commit/87a40bbd07e6b30575196370670b41f264aa78d7",
"url": "https://github.com/parallax/jsPDF/commit/87a40bbd07e6b30575196370670b41f264aa78d7"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/releases/tag/v4.2.1",
"url": "https://github.com/parallax/jsPDF/releases/tag/v4.2.1"
},
{
"category": "external",
"summary": "https://github.com/parallax/jsPDF/security/advisories/GHSA-wfv2-pwc8-crg5",
"url": "https://github.com/parallax/jsPDF/security/advisories/GHSA-wfv2-pwc8-crg5"
}
],
"release_date": "2026-03-18T03:05:44.964000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T16:37:57+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7110"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "jspdf: jsPDF: Cross site scripting via unsanitized output options"
},
{
"cve": "CVE-2026-33036",
"cwe": {
"id": "CWE-776",
"name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
},
"discovery_date": "2026-03-20T06:02:18.306021+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2449458"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by supplying specially crafted XML input containing numeric character references or standard XML entities. This input can bypass configured entity expansion limits, leading to excessive memory allocation and high CPU usage. The primary consequence is a Denial of Service (DoS), which can crash the affected process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: fast-xml-parser: Denial of Service via XML entity expansion bypass",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33036"
},
{
"category": "external",
"summary": "RHBZ#2449458",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449458"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33036",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33036"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33036",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33036"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/bd26122c838e6a55e7d7ac49b4ccc01a49999a01",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/bd26122c838e6a55e7d7ac49b4ccc01a49999a01"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.5.6",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.5.6"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-8gc5-j5rx-235r",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-8gc5-j5rx-235r"
}
],
"release_date": "2026-03-20T05:17:03.290000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T16:37:57+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7110"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "fast-xml-parser: fast-xml-parser: Denial of Service via XML entity expansion bypass"
},
{
"cve": "CVE-2026-33186",
"cwe": {
"id": "CWE-551",
"name": "Incorrect Behavior Order: Authorization Before Parsing and Canonicalization"
},
"discovery_date": "2026-03-20T23:02:27.802640+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2449833"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
],
"known_not_affected": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "RHBZ#2449833",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33186",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33186"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3",
"url": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3"
}
],
"release_date": "2026-03-20T22:23:32.147000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-08T16:37:57+00:00",
"details": "If you are using an earlier version of RHACS, you are advised to\nupgrade to the version of RHACS mentioned in the synopsis and release\nnotes in order to take advantage of the enhancements, bug fixes, and/or\nsecurity patches in the release.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7110"
},
{
"category": "workaround",
"details": "To mitigate this issue, implement infrastructure-level normalization to ensure all incoming HTTP/2 `:path` headers are properly formatted with a leading slash before reaching the gRPC-Go server. This can be achieved by configuring a reverse proxy or API gateway to validate and normalize the `:path` header. Ensure that any such intermediary is properly configured and restarted to apply the changes, which may temporarily impact service availability.",
"product_ids": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:72a20b53279a3a8830af7f7d6812a61425b9a837a83f97f3f54b7050916c3fa3_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:8d5b1983394113e7a4cf8029bb50f2530e858910b7020466b8e6a4933b6dae1a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:9371852170e6c5b3ddbaaf9ed6700117bac6d791c987814fde375f3301996876_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-central-db-rhel8@sha256:cb58f46536545fbc77c9bfc029d772ffa9c09d59db69efbc33e339e8ad294be5_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:0c9d3da8882bca445233259f751594ac7fb884b58b22980bd312b97589af064a_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:16ba303094b01480fe620c48fd42df6603979fe17b2b70a1686ea0c0cee7eea7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:aede8db305e402acdf3a6cdac67d0bcc54902955f2a54fadf6b13e1e69c6462a_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-collector-rhel8@sha256:c0081d8795d5bb8a32b36fcb892a6864dd62392dc6ef32fc2b9a20449e120743_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:5533b87f5a3c9df67608236393d31507dd2b1f0af0ca787997f9dfed44222d9d_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:8a3f82a33e522ce518e52411d48475cb47bea153176b833eace73fc24a5b7672_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:c7d8d836b92a80d6d02a8ea73a69d773b0983d9bae4f217b8f4adb39a0e00d86_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-main-rhel8@sha256:d9d95fe1014cf1632681171d34f760a1d7ffe81c81df1fb9942c1a08f4ffb857_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-operator-bundle@sha256:66a5990c109ebfefd445dea871123c2af717cd482b78db4b8aabd7a3eeb61e38_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:4f00761fa67936c65ae05c98d28886873321679ed3d0a8741526332e57b2455e_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:5abaa5a39ec732af6d795a087e91ef68483c9897c33cfe1a9de9035484348dec_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:81587f2e1630a5bcdea8c6b4ba1459a3e00e070bd4cb8eac80a923aac18dd4ba_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-rhel8-operator@sha256:c6907a16bc9d855c22a72d3f801ecbc0b0a014468711589c3a2a48afd5b4681c_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07d8cbd4310eda65e515533621df271cc8ac1818b1b275b50b961cbcc591bf76_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2b894cfaf6b322e5404e8f6926e6f4b6bc230857b8d7918d78e1e0025c52d2e7_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:4dae0bdb7b8acbef7a2d1eca02b9d1084de550024669d87639bfddfae8a89fba_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-roxctl-rhel8@sha256:9e6efacfc68bf8bdcf7148ce051c79091ef69a485d119e3c098063fa1f4f8470_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:2c2762b767c9512634c69fa3ec231f749a61569684d5abcce965d89ea23dcf85_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:4296c95011ba9beaca9f2de8a4287e7b0f859d88bb1025886048c1da85858a3f_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:be836e869ab59f6b479706659afec22ff7739660f6f410ab7dca73c0108fe3f8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f717ea17f778b7422f8f9800cbe0af01466beb363472b3cac500baffae4f899b_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3e106a6f9ce4cd8dd5e82e21402e6ad0583188c299c7fc246c57c2485b90ad06_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4a94f65f4fdf3d27ec688042749b6d09d8e435cb1e6d3800a998cf05596ed1a9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:62b563c730d30a8f349dafe29cdd949ec2d59cd005e978b5837dd100e2366ee8_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:b774310e45bc427b4cfd9b46ab513fa2d93e0c8867515bced6722b4d4e0c721b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:16768c8b79f218f568fd2a231baa9d84054285b636f013c6bff0dcbce4e515dc_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:5a174f879c2fbaff025d1bb61786fb8a07576091d463316ccdefb58dbba8acbf_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:9b0849d6dec032cd4d4a0e6de209eb5577fb6a4099934c9ab0f52612dcc5a299_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-rhel8@sha256:e5a6aa40bbe231feaf2b0399aa8a450a36ecf82ff76e28924782a55d9cecab24_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2444a5681db82400db7d054f630341ce20629ba50d7bd5ce259bf7e3dd9d4098_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3540f7466018222deb2064c2ba598e09adb670c67a21c4e17d078ab82fbad1c9_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:db5c88056eaf21217e6fba697f146e7a6870ad890ad2b996f0be16d16f41966a_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:eba5b1b3adb15c83d9d160c2b1bb9e84ab6bfbcfed837e5578bfe50b0d28aa1b_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1e817ba704f3349178cd3094b929cb468763a77f234a0dc7d986dfe67e741ee7_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:2187aaf918f785ad43d00667905d7f9bbe3edc68a34d9965a45d8e80ce74d88e_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:714fca639c806e479107dbb96ef178ca3d304737209b9c060bf978674f40bc47_s390x",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:be770376f11072bc472c904645063e61ff571088185669ba2514e56eeb75e8aa_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:579133a11226d177bf8b72ebd81285c842671e41e50c49a482bc80412eb703e9_amd64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:6aa8e51a41b8a1d45962b0d250a8c99f4d0065a16d6e727ab58f54dbd2f23c34_ppc64le",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:95f9db01662bba089d7ccd418a52dde2aca7052ff3f1231c4012c0764d261fd7_arm64",
"Red Hat Advanced Cluster Security for Kubernetes 4.8:registry.redhat.io/advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:e9299cf7be4bdc5c5f5d32cce1e4da3f44ad04adfd8ea92d56ebb3ec29dcc5a0_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation"
}
]
}
GHSA-WFV2-PWC8-CRG5
Vulnerability from github – Published: 2026-03-17 17:07 – Updated: 2026-03-19 21:00
VLAI?
Summary
jsPDF has HTML Injection in New Window paths
Details
Impact
User control of the options argument of the output function allows attackers to inject arbitrary HTML (such as scripts) into the browser context the created PDF is opened in. The affected overloads and options are:
"pdfobjectnewwindow": thepdfObjectUrloption and the entire options object, which is JSON-serialized and included verbatim in the generated HTML-string."pdfjsnewwindow": thepdfJsUrlandfilenameoptions"dataurlnewwindow": thefilenameoption
The vulnerability can be exploited in the following scenario: the attacker provides values for the output options, for example via a web interface. These values are then passed unsanitized (automatically or semi-automatically) to the attack victim. The victim creates and opens a PDF with the attack vector using one of the vulnerable method overloads inside their browser. The attacker can thus inject scripts that run in the victims browser context and can extract or modify secrets from this context.
Example attack vector:
import { jsPDF } from 'jspdf';
const doc = new jsPDF();
const payload = 'x\"></iframe><script>window.__n=1</script><iframe src="';
doc.output('pdfjsnewwindow', {
filename: payload,
pdfJsUrl: 'viewer.html'
});
Patches
The vulnerability has been fixed in jspdf@4.2.1.
Workarounds
Sanitize user input before passing it to the output method.
Severity ?
9.6 (Critical)
{
"affected": [
{
"database_specific": {
"last_known_affected_version_range": "\u003c= 4.2.0"
},
"package": {
"ecosystem": "npm",
"name": "jspdf"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "4.2.1"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2026-31938"
],
"database_specific": {
"cwe_ids": [
"CWE-79"
],
"github_reviewed": true,
"github_reviewed_at": "2026-03-17T17:07:59Z",
"nvd_published_at": "2026-03-18T04:17:23Z",
"severity": "CRITICAL"
},
"details": "### Impact\n\nUser control of the `options` argument of the `output` function allows attackers to inject arbitrary HTML (such as scripts) into the browser context the created PDF is opened in. The affected overloads and options are:\n\n* `\"pdfobjectnewwindow\"`: the `pdfObjectUrl` option and the entire options object, which is JSON-serialized and included verbatim in the generated HTML-string.\n* `\"pdfjsnewwindow\"`: the `pdfJsUrl` and `filename` options\n* `\"dataurlnewwindow\"`: the `filename` option\n\nThe vulnerability can be exploited in the following scenario: the attacker provides values for the output options, for example via a web interface. These values are then passed unsanitized (automatically or semi-automatically) to the attack victim. The victim creates and opens a PDF with the attack vector using one of the vulnerable method overloads inside their browser. The attacker can thus inject scripts that run in the victims browser context and can extract or modify secrets from this context.\n\nExample attack vector:\n\n```js\nimport { jsPDF } from \u0027jspdf\u0027;\nconst doc = new jsPDF();\n\nconst payload = \u0027x\\\"\u003e\u003c/iframe\u003e\u003cscript\u003ewindow.__n=1\u003c/script\u003e\u003ciframe src=\"\u0027;\n\ndoc.output(\u0027pdfjsnewwindow\u0027, {\n filename: payload,\n pdfJsUrl: \u0027viewer.html\u0027\n});\n```\n\n### Patches\nThe vulnerability has been fixed in jspdf@4.2.1.\n\n### Workarounds\nSanitize user input before passing it to the output method.",
"id": "GHSA-wfv2-pwc8-crg5",
"modified": "2026-03-19T21:00:33Z",
"published": "2026-03-17T17:07:59Z",
"references": [
{
"type": "WEB",
"url": "https://github.com/parallax/jsPDF/security/advisories/GHSA-wfv2-pwc8-crg5"
},
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-31938"
},
{
"type": "WEB",
"url": "https://github.com/parallax/jsPDF/commit/87a40bbd07e6b30575196370670b41f264aa78d7"
},
{
"type": "PACKAGE",
"url": "https://github.com/parallax/jsPDF"
},
{
"type": "WEB",
"url": "https://github.com/parallax/jsPDF/releases/tag/v4.2.1"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:L",
"type": "CVSS_V3"
}
],
"summary": "jsPDF has HTML Injection in New Window paths"
}
FKIE_CVE-2026-31938
Vulnerability from fkie_nvd - Published: 2026-03-18 04:17 - Updated: 2026-03-18 18:02
Severity ?
9.6 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:L
6.1 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
6.1 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Summary
jsPDF is a library to generate PDFs in JavaScript. Prior to version 4.2.1, user control of the `options` argument of the `output` function allows attackers to inject arbitrary HTML (such as scripts) into the browser context the created PDF is opened in. The vulnerability can be exploited in the following scenario: the attacker provides values for the output options, for example via a web interface. These values are then passed unsanitized (automatically or semi-automatically) to the attack victim. The victim creates and opens a PDF with the attack vector using one of the vulnerable method overloads inside their browser. The attacker can thus inject scripts that run in the victims browser context and can extract or modify secrets from this context. The vulnerability has been fixed in jspdf@4.2.1. As a workaround, sanitize user input before passing it to the output method.
References
| URL | Tags | ||
|---|---|---|---|
| security-advisories@github.com | https://github.com/parallax/jsPDF/commit/87a40bbd07e6b30575196370670b41f264aa78d7 | Patch | |
| security-advisories@github.com | https://github.com/parallax/jsPDF/releases/tag/v4.2.1 | Product, Release Notes | |
| security-advisories@github.com | https://github.com/parallax/jsPDF/security/advisories/GHSA-wfv2-pwc8-crg5 | Mitigation, Vendor Advisory |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:parall:jspdf:*:*:*:*:*:node.js:*:*",
"matchCriteriaId": "E32C16E0-23FB-49ED-B364-2170D7FC9935",
"versionEndExcluding": "4.2.1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "jsPDF is a library to generate PDFs in JavaScript. Prior to version 4.2.1, user control of the `options` argument of the `output` function allows attackers to inject arbitrary HTML (such as scripts) into the browser context the created PDF is opened in. The vulnerability can be exploited in the following scenario: the attacker provides values for the output options, for example via a web interface. These values are then passed unsanitized (automatically or semi-automatically) to the attack victim. The victim creates and opens a PDF with the attack vector using one of the vulnerable method overloads inside their browser. The attacker can thus inject scripts that run in the victims browser context and can extract or modify secrets from this context. The vulnerability has been fixed in jspdf@4.2.1. As a workaround, sanitize user input before passing it to the output method."
},
{
"lang": "es",
"value": "jsPDF es una biblioteca para generar PDFs en JavaScript. Antes de la versi\u00f3n 4.2.1, el control del usuario sobre el argumento \u0027options\u0027 de la funci\u00f3n \u0027output\u0027 permite a los atacantes inyectar HTML arbitrario (como scripts) en el contexto del navegador en el que se abre el PDF creado. La vulnerabilidad puede ser explotada en el siguiente escenario: el atacante proporciona valores para las opciones de salida, por ejemplo, a trav\u00e9s de una interfaz web. Estos valores se pasan luego sin sanear (autom\u00e1tica o semi-autom\u00e1ticamente) a la v\u00edctima del ataque. La v\u00edctima crea y abre un PDF con el vector de ataque utilizando una de las sobrecargas de m\u00e9todo vulnerables dentro de su navegador. El atacante puede as\u00ed inyectar scripts que se ejecutan en el contexto del navegador de la v\u00edctima y puede extraer o modificar secretos de este contexto. La vulnerabilidad ha sido corregida en jspdf@4.2.1. Como soluci\u00f3n alternativa, sanear la entrada del usuario antes de pasarla al m\u00e9todo de salida."
}
],
"id": "CVE-2026-31938",
"lastModified": "2026-03-18T18:02:15.640",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 9.6,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:L",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 6.0,
"source": "security-advisories@github.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2026-03-18T04:17:23.507",
"references": [
{
"source": "security-advisories@github.com",
"tags": [
"Patch"
],
"url": "https://github.com/parallax/jsPDF/commit/87a40bbd07e6b30575196370670b41f264aa78d7"
},
{
"source": "security-advisories@github.com",
"tags": [
"Product",
"Release Notes"
],
"url": "https://github.com/parallax/jsPDF/releases/tag/v4.2.1"
},
{
"source": "security-advisories@github.com",
"tags": [
"Mitigation",
"Vendor Advisory"
],
"url": "https://github.com/parallax/jsPDF/security/advisories/GHSA-wfv2-pwc8-crg5"
}
],
"sourceIdentifier": "security-advisories@github.com",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-79"
}
],
"source": "security-advisories@github.com",
"type": "Primary"
}
]
}
Loading…
Show additional events:
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…