{
  "threat_severity" : "Moderate",
  "public_date" : "2022-05-13T00:00:00Z",
  "bugzilla" : {
    "description" : "openshift/router: route hijacking attack via crafted HAProxy configuration file",
    "id" : "2076211",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2076211"
  },
  "cvss3" : {
    "cvss3_base_score" : "6.3",
    "cvss3_scoring_vector" : "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
    "status" : "verified"
  },
  "cwe" : "CWE-280",
  "details" : [ "In OpenShift Container Platform, a user with permissions to create or modify Routes can craft a payload that inserts a malformed entry into one of the cluster router's HAProxy configuration files. This malformed entry can match any arbitrary hostname, or all hostnames in the cluster, and direct traffic to an arbitrary application within the cluster, including one under attacker control.", "In OpenShift Container Platform, a user with permissions to create or modify Routes can craft a payload that inserts a malformed entry into one of the cluster router's HAProxy configuration files.  This malformed entry can match any arbitrary hostname, or all hostnames in the cluster, and direct traffic to an arbitrary application within the cluster, including one under attacker control." ],
  "affected_release" : [ {
    "product_name" : "Red Hat OpenShift Container Platform 3.11",
    "release_date" : "2022-05-31T00:00:00Z",
    "advisory" : "RHSA-2022:2281",
    "cpe" : "cpe:/a:redhat:openshift:3.11::el7",
    "package" : "openshift3/ose-haproxy-router:v3.11.705-1.g7a17a5d"
  }, {
    "product_name" : "Red Hat OpenShift Container Platform 4.10",
    "release_date" : "2022-05-11T00:00:00Z",
    "advisory" : "RHBA-2022:1690",
    "cpe" : "cpe:/a:redhat:openshift:4.10::el8",
    "package" : "openshift4/ose-haproxy-router:v4.10.0-202204291840.p0.g11109e4.assembly.stream"
  }, {
    "product_name" : "Red Hat OpenShift Container Platform 4.6",
    "release_date" : "2022-05-26T00:00:00Z",
    "advisory" : "RHSA-2022:2264",
    "cpe" : "cpe:/a:redhat:openshift:4.6::el8",
    "package" : "openshift4/ose-haproxy-router:v4.6.0-202205131546.p0.g7d2af02.assembly.stream"
  }, {
    "product_name" : "Red Hat OpenShift Container Platform 4.7",
    "release_date" : "2022-05-25T00:00:00Z",
    "advisory" : "RHSA-2022:2268",
    "cpe" : "cpe:/a:redhat:openshift:4.7::el8",
    "package" : "openshift4/ose-haproxy-router:v4.7.0-202205131637.p0.ge246a5f.assembly.stream"
  }, {
    "product_name" : "Red Hat OpenShift Container Platform 4.8",
    "release_date" : "2022-05-25T00:00:00Z",
    "advisory" : "RHSA-2022:2272",
    "cpe" : "cpe:/a:redhat:openshift:4.8::el8",
    "package" : "openshift4/ose-haproxy-router:v4.8.0-202205131628.p0.gd0d6380.assembly.stream"
  }, {
    "product_name" : "Red Hat OpenShift Container Platform 4.9",
    "release_date" : "2022-05-25T00:00:00Z",
    "advisory" : "RHSA-2022:2283",
    "cpe" : "cpe:/a:redhat:openshift:4.9::el8",
    "package" : "openshift4/ose-haproxy-router:v4.9.0-202205131707.p0.gfe7ea46.assembly.stream"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2022-1677\nhttps://nvd.nist.gov/vuln/detail/CVE-2022-1677" ],
  "name" : "CVE-2022-1677",
  "csaw" : false
}