CVE-2026-1784
8.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Summary
The Route OpenShift resource allows to define routes to make pods reachable at a subdomain through HAProxy. It was found that the checks performed on the spec.path YAML stanza in a Route document was insufficient and could allow a controlled injection of the HAProxy configuration.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Red Hat | Red Hat OpenShift Container Platform 4.13 | 1781123014 < * | unaffected |
| Red Hat | Red Hat OpenShift Container Platform 4.14 | 1781870101 < * | unaffected |
| Red Hat | Red Hat OpenShift Container Platform 4.15 | 1781928857 < * | unaffected |
| Red Hat | Red Hat OpenShift Container Platform 4.16 | 1780962617 < * | unaffected |
| Red Hat | Red Hat OpenShift Container Platform 4.18 | 1780988280 < * | unaffected |
| Red Hat | Red Hat OpenShift Container Platform 4.19 | 1780043338 < * | unaffected |
| Red Hat | Red Hat OpenShift Container Platform 4.20 | 1780990977 < * | unaffected |
| Red Hat | Red Hat OpenShift Container Platform 4.21 | 1780444348 < * | unaffected |
Weaknesses
- CWE-15: External Control of System or Configuration Setting
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
ose-cluster-ingress-operator: Remote Code Execution Through HAProxy Configuration Injection
Additional References
- https://access.redhat.com/security/cve/CVE-2026-1784
- https://bugzilla.redhat.com/show_bug.cgi?id=2436075
- https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-1784.json
- https://access.redhat.com/errata/RHSA-2026:26543
- https://access.redhat.com/errata/RHSA-2026:28893
- https://access.redhat.com/errata/RHSA-2026:28964
- https://access.redhat.com/errata/RHSA-2026:25045
- https://access.redhat.com/errata/RHSA-2026:25182
- https://access.redhat.com/errata/RHSA-2026:23246
- https://access.redhat.com/errata/RHSA-2026:25194
- https://access.redhat.com/errata/RHSA-2026:23241
References
- https://access.redhat.com/errata/RHSA-2026:23241
- https://access.redhat.com/errata/RHSA-2026:23246
- https://access.redhat.com/errata/RHSA-2026:25045
- https://access.redhat.com/errata/RHSA-2026:25182
- https://access.redhat.com/errata/RHSA-2026:25194
- https://access.redhat.com/errata/RHSA-2026:26543
- https://access.redhat.com/errata/RHSA-2026:28893
- https://access.redhat.com/errata/RHSA-2026:28964
- https://access.redhat.com/security/cve/CVE-2026-1784
- https://bugzilla.redhat.com/show_bug.cgi?id=2436075
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.