CVE-2022-1632
CVE-2022-1632
An Improper Certificate Validation attack was found in Openshift. A re-encrypt Route with destinationCACertificate explicitly set to the default serviceCA skips internal Service TLS certificate validation. This flaw allows an attacker to exploit an invalid certificate, resulting in a loss of confidentiality.
Affected products
n/a · OpenshiftWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →