PT-2023-23033 · Red Hat · Red Hat Openshift Container Platform

David Benoit

Published

2023-07-05

Updated

2023-07-12

CVE-2023-3089

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Red Hat OpenShift Container Platform (affected versions not specified)

Description A compliance issue was discovered in the Red Hat OpenShift Container Platform, where not all cryptographic modules in use were FIPS-validated when FIPS mode was enabled.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Protection Mechanism Failure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-521CWE-693

Related Identifiers

CVE-2023-3089

RHSA-2023:3910

RHSA-2023:3914

RHSA-2023:3924

RHSA-2023:4093

RHSA-2023:4471

RHSA-2023:5009

Affected Products

Red Hat Openshift Container Platform

PT-2023-23033 · Red Hat · Red Hat Openshift Container Platform

CVE-2023-3089

Weakness Enumeration

Related Identifiers

Affected Products

References · 5