Improper validation of integrity check value in Red Hat OpenShift Container Platform 4.16 packages

1) Improper validation of integrity check value

EUVDB-ID: #VU89685

Risk: Medium

CVSSv3.1: 6.5 [CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2024-3727

CWE-ID: CWE-354 - Improper Validation of Integrity Check Value

Exploit availability: No

Description

The vulnerability allows a remote attacker to compromise the affected system.

The vulnerability exists due to improper validation of integrity check. A remote attacker can trick the victim into providing authenticated registry accesses, causing resource exhaustion, local path traversal, and other attacks.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

openshift (Red Hat package): before 4.16.0-202406191607.p0.g58452d8.assembly.stream.el8

kernel (Red Hat package): before 5.14.0-427.24.1.el9_4

cri-o (Red Hat package): before 1.29.5-7.rhaos4.16.git7db4ada.el8

Red Hat OpenShift Container Platform: before 4.16.1

CPE2.3

• cpe:2.3:o:red_hat:openshift_redhat_package:*:*:*:*:*:red_hat_enterprise_linux:*:
• cpe:2.3:o:red_hat:kernel_redhat_package:*:*:*:*:*:red_hat_enterprise_linux:*:
• cpe:2.3:o:red_hat:cri-o_redhat_package:*:*:*:*:*:red_hat_enterprise_linux:*:
• cpe:2.3:a:red_hat:red_hat_openshift_container_platform:*:*:*:*:*:*:*:

External links

http://access.redhat.com/errata/RHSA-2024:4159

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.