CNNVD-202512-3004 Information

CNNVD ID

CNNVD-202512-3004

Related CVE

CVE-2025-14443

• CNNVD Published: 2025-12-16

Description (Chinese)

Red Hat OpenShift是美国红帽（Red Hat）公司的一款平台即服务（PaaS）云计算平台，它支持构建、测试、部署和运行应用程序。 Red Hat OpenShift存在代码问题漏洞，该漏洞源于缺少IP地址和网络范围验证，可能导致SSRF攻击。

Description (English)

Red Hat OpenShift, a platform of Red Hat, a service (PaaS) cloud computing platform, supports the construction, testing, deployment and operation of applications. Red Hat OpenShift had a code breach, which stemmed from the lack of IP addresses and network scope verification, which could lead to an SSRF attack.

Hazard Level

Medium

Vulnerability Type

代码问题

Affected Vendor

红帽

Published

2025-12-16

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/CVE-2025-14443 https://bugzilla.redhat.com/show_bug.cgi?id=2420964 https://github.com/tuxerrante/openshift-ssrf