Количество 2
Количество 2
CVE-2026-1531
A flaw was found in foreman_kubevirt. When configuring the connection to OpenShift, the system disables SSL verification if a Certificate Authority (CA) certificate is not explicitly set. This insecure default allows a remote attacker, capable of intercepting network traffic between Satellite and OpenShift, to perform a Man-in-the-Middle (MITM) attack. Such an attack could lead to the disclosure or alteration of sensitive information.
GHSA-2qxw-7fmx-gqfm
foreman_kubevirt disables SSL verification if a Certificate Authority (CA) certificate is not explicitly set
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2026-1531 A flaw was found in foreman_kubevirt. When configuring the connection to OpenShift, the system disables SSL verification if a Certificate Authority (CA) certificate is not explicitly set. This insecure default allows a remote attacker, capable of intercepting network traffic between Satellite and OpenShift, to perform a Man-in-the-Middle (MITM) attack. Such an attack could lead to the disclosure or alteration of sensitive information. | CVSS3: 8.1 | 0% Низкий | 7 дней назад |
| GHSA-2qxw-7fmx-gqfm foreman_kubevirt disables SSL verification if a Certificate Authority (CA) certificate is not explicitly set | CVSS3: 8.1 | 0% Низкий | 7 дней назад |
Уязвимостей на страницу