CVE-2022-1632

Summary

An Improper Certificate Validation attack was found in Openshift. A re-encrypt Route with destinationCACertificate explicitly set to the default serviceCA skips internal Service TLS certificate validation. This flaw allows an attacker to exploit an invalid certificate, resulting in a loss of confidentiality.

Affected Software

VendorProductVersion RangeStatus
n/aOpenshift4.8.17affected

Weaknesses

  • CWE-295: CWE-295

ADP Enrichment

CVE Program Container

Additional References

References