7.5
HIGH CVSS 3.1
CVE-2026-27137
Incorrect enforcement of email constraints in crypto/x509
Description

When verifying a certificate chain which contains a certificate containing multiple email address constraints which share common local portions but different domain portions, these constraints will not be properly applied, and only the last constraint will be considered.

INFO

Published Date :

March 6, 2026, 10:16 p.m.

Last Modified :

July 2, 2026, 12:16 p.m.

Remotely Exploit :

Yes !
Affected Products

The following products are affected by CVE-2026-27137 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID Vendor Product Action
1 Golang go
CVSS Scores
The Common Vulnerability Scoring System is a standardized framework for assessing the severity of vulnerabilities in software and systems. We collect and displays CVSS scores from various sources for each CVE.
Score Version Severity Vector Exploitability Score Impact Score Source
CVSS 134c704f-9b21-4f2e-91b3-4a467353bcc0
CVSS 3.1 HIGH 134c704f-9b21-4f2e-91b3-4a467353bcc0
CVSS 3.1 HIGH 0b0ca135-0b70-47e7-9f44-1890c2a1c46c
Solution
Update the certificate validation logic to correctly process all email address constraints.
  • Update certificate validation logic.
  • Ensure all email constraints are processed.
  • Test with diverse email constraint scenarios.
Public PoC/Exploit Available at Github

CVE-2026-27137 has a 2 public PoC/Exploit available at Github. Go to the Public Exploits tab to see the list.

References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2026-27137.

URL Resource
https://go.dev/cl/752182 Mailing List
https://go.dev/issue/77952 Issue Tracking
https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk Release Notes
https://pkg.go.dev/vuln/GO-2026-4599 Vendor Advisory
https://access.redhat.com/errata/RHSA-2026:10125
https://access.redhat.com/errata/RHSA-2026:10158
https://access.redhat.com/errata/RHSA-2026:10169
https://access.redhat.com/errata/RHSA-2026:10175
https://access.redhat.com/errata/RHSA-2026:10184
https://access.redhat.com/errata/RHSA-2026:10225
https://access.redhat.com/errata/RHSA-2026:10250
https://access.redhat.com/errata/RHSA-2026:10929
https://access.redhat.com/errata/RHSA-2026:11800
https://access.redhat.com/errata/RHSA-2026:13545
https://access.redhat.com/errata/RHSA-2026:14879
https://access.redhat.com/errata/RHSA-2026:19022
https://access.redhat.com/errata/RHSA-2026:19049
https://access.redhat.com/errata/RHSA-2026:19132
https://access.redhat.com/errata/RHSA-2026:19181
https://access.redhat.com/errata/RHSA-2026:19375
https://access.redhat.com/errata/RHSA-2026:21769
https://access.redhat.com/errata/RHSA-2026:22347
https://access.redhat.com/errata/RHSA-2026:22423
https://access.redhat.com/errata/RHSA-2026:22450
https://access.redhat.com/errata/RHSA-2026:22714
https://access.redhat.com/errata/RHSA-2026:22862
https://access.redhat.com/errata/RHSA-2026:22937
https://access.redhat.com/errata/RHSA-2026:23228
https://access.redhat.com/errata/RHSA-2026:23345
https://access.redhat.com/errata/RHSA-2026:26568
https://access.redhat.com/errata/RHSA-2026:26585
https://access.redhat.com/errata/RHSA-2026:28038
https://access.redhat.com/errata/RHSA-2026:28047
https://access.redhat.com/errata/RHSA-2026:29854
https://access.redhat.com/errata/RHSA-2026:5110
https://access.redhat.com/errata/RHSA-2026:5549
https://access.redhat.com/errata/RHSA-2026:7291
https://access.redhat.com/errata/RHSA-2026:8151
https://access.redhat.com/errata/RHSA-2026:8167
https://access.redhat.com/errata/RHSA-2026:8337
https://access.redhat.com/errata/RHSA-2026:8338
https://access.redhat.com/errata/RHSA-2026:8842
https://access.redhat.com/errata/RHSA-2026:9052
https://access.redhat.com/errata/RHSA-2026:9385
https://access.redhat.com/errata/RHSA-2026:9697
https://access.redhat.com/errata/RHSA-2026:9698
https://access.redhat.com/errata/RHSA-2026:9699
https://access.redhat.com/errata/RHSA-2026:9872
https://access.redhat.com/security/cve/CVE-2026-27137
https://bugzilla.redhat.com/show_bug.cgi?id=2445345
https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-27137.json
CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2026-27137 is associated with the following CWEs:

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2026-27137 weaknesses.

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

ollama based on v0.36.0 - fixed all CVE

Updated: 3 weeks, 6 days ago
0 stars 0 fork 0 watcher
Born at : June 8, 2026, 1:06 p.m. This repo has been linked 33 different CVEs too.

Deterministic CVE assessment tool for medik8s operators

Dockerfile Go Makefile Shell

Updated: 1 month ago
0 stars 0 fork 0 watcher
Born at : April 23, 2026, 2:41 p.m. This repo has been linked 4 different CVEs too.

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2026-27137 vulnerability anywhere in the article.

The following table lists the changes that have been made to the CVE-2026-27137 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

  • CVE Modified by 0b0ca135-0b70-47e7-9f44-1890c2a1c46c

    Jul. 02, 2026

    Action Type Old Value New Value
    Changed Affected [{'cpes': ['cpe:/a:redhat:openstack:17.1', 'cpe:/a:redhat:openstack:17.1::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenStack Platform 17.1', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/o:redhat:enterprise_linux_eus:10.0'], 'vendor': 'Red Hat', 'product': 'Red Hat Enterprise Linux AppStream EUS (v. 10.0)', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/o:redhat:enterprise_linux:10.1', 'cpe:/o:redhat:enterprise_linux:10.2'], 'vendor': 'Red Hat', 'product': 'Red Hat Enterprise Linux AppStream (v. 10)', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:rhel_eus:9.6::appstream'], 'vendor': 'Red Hat', 'product': 'Red Hat Enterprise Linux AppStream EUS (v.9.6)', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:enterprise_linux:9::appstream'], 'vendor': 'Red Hat', 'product': 'Red Hat Enterprise Linux AppStream (v. 9)', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:devworkspace:0.40::el9'], 'vendor': 'Red Hat', 'product': 'DevWorkspace Operator 0.4', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:logging:6.0::el9'], 'vendor': 'Red Hat', 'product': 'Logging Subsystem for Red Hat OpenShift 6.0', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:logging:6.2::el9'], 'vendor': 'Red Hat', 'product': 'Logging Subsystem for Red Hat OpenShift 6.2', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:logging:6.4::el9'], 'vendor': 'Red Hat', 'product': 'Logging Subsystem for Red Hat OpenShift 6.4', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:multicluster_globalhub:1.3::el9'], 'vendor': 'Red Hat', 'product': 'Multicluster Global Hub 1.3.4', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:multicluster_globalhub:1.4::el9'], 'vendor': 'Red Hat', 'product': 'Multicluster Global Hub 1.4.5', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:multicluster_globalhub:1.5::el9'], 'vendor': 'Red Hat', 'product': 'Multicluster Global Hub 1.5.4', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:multicluster_globalhub:1.6::el9'], 'vendor': 'Red Hat', 'product': 'Multicluster Global Hub 1.6.2', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_api_data_protection:1.4::el9'], 'vendor': 'Red Hat', 'product': 'OpenShift API for Data Protection 1.4', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_api_data_protection:1.5::el9'], 'vendor': 'Red Hat', 'product': 'OpenShift API for Data Protection 1.5', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:acm:2.15::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Advanced Cluster Management for Kubernetes 2.15', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:ansible_automation_platform:2.6::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Ansible Automation Platform 2.6', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:hummingbird:1'], 'vendor': 'Red Hat', 'product': 'Red Hat Hardened Images', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:lightspeed_for_runtimes:1.0::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Lightspeed (formerly Insights) for Runtimes 1', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_ai:2.25::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift AI 2.25', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_builds:1.6::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift Builds 1.6.5', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_builds:1.7::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift Builds 1.7.3', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_devspaces:3.27::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift Dev Spaces 3.27', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_gitops:1.18::el8'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift GitOps 1.18', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_gitops:1.19::el8'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift GitOps 1.19', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_gitops:1.20::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift GitOps 1.2', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_distributed_tracing:3.9::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift distributed tracing 3.9.3', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:quay:3.16::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Quay 3.16', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:satellite:6.18::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Satellite 6.18', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:trusted_artifact_signer:1.3::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Trusted Artifact Signer 1.3', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:webterminal:1.11::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Web Terminal 1.11', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:webterminal:1.12::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Web Terminal 1.12', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:webterminal:1.13::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Web Terminal 1.13', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:webterminal:1.14::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Web Terminal 1.14', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:webterminal:1.15::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Web Terminal 1.15', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:assisted_installer:2'], 'vendor': 'Red Hat', 'product': 'Assisted Installer for Red Hat OpenShift Container Platform 2', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:confidential_compute_attestation:1'], 'vendor': 'Red Hat', 'product': 'Confidential Compute Attestation', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:deployment_validator_operator'], 'vendor': 'Red Hat', 'product': 'Deployment Validation Operator', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:ext_dns_optr:1'], 'vendor': 'Red Hat', 'product': 'ExternalDNS Operator', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:workload_availability_far:0'], 'vendor': 'Red Hat', 'product': 'Fence Agents Remediation Operator', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:gatekeeper:3'], 'vendor': 'Red Hat', 'product': 'Gatekeeper 3', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:logging:5'], 'vendor': 'Red Hat', 'product': 'Logging Subsystem for Red Hat OpenShift', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:lvms:4'], 'vendor': 'Red Hat', 'product': 'Logical Volume Manager Storage', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:migration_toolkit_applications:8'], 'vendor': 'Red Hat', 'product': 'Migration Toolkit for Applications 8', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:rhmt:1'], 'vendor': 'Red Hat', 'product': 'Migration Toolkit for Containers', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:mirror_registry:1'], 'vendor': 'Red Hat', 'product': 'mirror registry for Red Hat OpenShift', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:ocp_tools'], 'vendor': 'Red Hat', 'product': 'OpenShift Developer Tools and Services', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_lightspeed'], 'vendor': 'Red Hat', 'product': 'OpenShift Lightspeed', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_pipelines:1'], 'vendor': 'Red Hat', 'product': 'OpenShift Pipelines', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:serverless:1'], 'vendor': 'Red Hat', 'product': 'OpenShift Serverless', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:red_hat_3scale_amp:2'], 'vendor': 'Red Hat', 'product': 'Red Hat 3scale API Management Platform 2', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:apache_camel_hawtio:4'], 'vendor': 'Red Hat', 'product': 'Red Hat build of Apache Camel - HawtIO 4', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:certifications:9'], 'vendor': 'Red Hat', 'product': 'Red Hat Certification Program for Red Hat Enterprise Linux 9', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:connectivity_link:1'], 'vendor': 'Red Hat', 'product': 'Red Hat Connectivity Link 1', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:rhdh:1'], 'vendor': 'Red Hat', 'product': 'Red Hat Developer Hub', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:edge_manager:1'], 'vendor': 'Red Hat', 'product': 'Red Hat Edge Manager 1', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/o:redhat:enterprise_linux:10'], 'vendor': 'Red Hat', 'product': 'Red Hat Enterprise Linux 10', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/o:redhat:enterprise_linux:7'], 'vendor': 'Red Hat', 'product': 'Red Hat Enterprise Linux 7', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/o:redhat:enterprise_linux:8'], 'vendor': 'Red Hat', 'product': 'Red Hat Enterprise Linux 8', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/o:redhat:enterprise_linux:9'], 'vendor': 'Red Hat', 'product': 'Red Hat Enterprise Linux 9', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:enterprise_linux_ai:3'], 'vendor': 'Red Hat', 'product': 'Red Hat Enterprise Linux AI (RHEL AI) 3', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_cluster_manager_cli:1'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift Cluster Manager CLI', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift:4'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift Container Platform 4', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_data_foundation:4'], 'vendor': 'Red Hat', 'product': 'Red Hat Openshift Data Foundation 4', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_service_on_aws:1'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift on AWS', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openstack:16.2'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenStack Platform 16.2', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openstack:18.0'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenStack Platform 18.0', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:quay:3'], 'vendor': 'Red Hat', 'product': 'Red Hat Quay 3', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:satellite:6'], 'vendor': 'Red Hat', 'product': 'Red Hat Satellite 6', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:amq_streams:3'], 'vendor': 'Red Hat', 'product': 'streams for Apache Kafka 3', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:zero_trust_workload_identity_manager:1'], 'vendor': 'Red Hat', 'product': 'Zero Trust Workload Identity Manager', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:zero_trust_workload_identity_manager:0'], 'vendor': 'Red Hat', 'product': 'Zero Trust Workload Identity Manager - Tech Preview', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:cert_manager:1'], 'vendor': 'Red Hat', 'product': 'cert-manager Operator for Red Hat OpenShift', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:openshift_compliance_operator:1'], 'vendor': 'Red Hat', 'product': 'Compliance Operator', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:cryostat:4'], 'vendor': 'Red Hat', 'product': 'Cryostat 4', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:openshift_custom_metrics_autoscaler:2'], 'vendor': 'Red Hat', 'product': 'Custom Metric Autoscaler operator for Red Hat Openshift', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:external_secrets_operator:1'], 'vendor': 'Red Hat', 'product': 'External Secrets Operator for Red Hat OpenShift', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:openshift_file_integrity_operator:1'], 'vendor': 'Red Hat', 'product': 'File Integrity Operator', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:workload_availability_mdr:0'], 'vendor': 'Red Hat', 'product': 'Machine Deletion Remediation Operator', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:mirror_registry:2'], 'vendor': 'Red Hat', 'product': 'mirror registry for Red Hat OpenShift 2', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:multicluster_engine'], 'vendor': 'Red Hat', 'product': 'Multicluster Engine for Kubernetes', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:network_observ_optr:1'], 'vendor': 'Red Hat', 'product': 'Network Observability Operator', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:workload_availability_nhc:0'], 'vendor': 'Red Hat', 'product': 'Node HealthCheck Operator', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:service_mesh:2'], 'vendor': 'Red Hat', 'product': 'OpenShift Service Mesh 2', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:service_mesh:3'], 'vendor': 'Red Hat', 'product': 'OpenShift Service Mesh 3', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:openshift_power_monitoring'], 'vendor': 'Red Hat', 'product': 'Power monitoring for Red Hat OpenShift', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:advanced_cluster_security:4'], 'vendor': 'Red Hat', 'product': 'Red Hat Advanced Cluster Security 4', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:ansible_automation_platform:2'], 'vendor': 'Red Hat', 'product': 'Red Hat Ansible Automation Platform 2', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:openshift_ai'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift AI (RHOAI)', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:windows_machine_config'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift for Windows Containers', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:container_native_virtualization:4'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift Virtualization 4', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:service_interconnect:1'], 'vendor': 'Red Hat', 'product': 'Red Hat Service Interconnect 1', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:service_interconnect:2'], 'vendor': 'Red Hat', 'product': 'Red Hat Service Interconnect 2', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:openshift_security_profiles_operator:1'], 'vendor': 'Red Hat', 'product': 'Security Profiles Operator', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:stf:1.5'], 'vendor': 'Red Hat', 'product': 'Service Telemetry Framework 1.5', 'defaultStatus': 'unaffected'}] [{'cpes': ['cpe:/a:redhat:openstack:17.1', 'cpe:/a:redhat:openstack:17.1::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenStack Platform 17.1', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/o:redhat:enterprise_linux_eus:10.0'], 'vendor': 'Red Hat', 'product': 'Red Hat Enterprise Linux AppStream EUS (v. 10.0)', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/o:redhat:enterprise_linux:10.1', 'cpe:/o:redhat:enterprise_linux:10.2'], 'vendor': 'Red Hat', 'product': 'Red Hat Enterprise Linux AppStream (v. 10)', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:rhel_eus:9.6::appstream'], 'vendor': 'Red Hat', 'product': 'Red Hat Enterprise Linux AppStream EUS (v.9.6)', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:enterprise_linux:9::appstream'], 'vendor': 'Red Hat', 'product': 'Red Hat Enterprise Linux AppStream (v. 9)', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:devworkspace:0.40::el9'], 'vendor': 'Red Hat', 'product': 'DevWorkspace Operator 0.4', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:logging:6.0::el9'], 'vendor': 'Red Hat', 'product': 'Logging Subsystem for Red Hat OpenShift 6.0', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:logging:6.2::el9'], 'vendor': 'Red Hat', 'product': 'Logging Subsystem for Red Hat OpenShift 6.2', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:logging:6.4::el9'], 'vendor': 'Red Hat', 'product': 'Logging Subsystem for Red Hat OpenShift 6.4', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:multicluster_globalhub:1.3::el9'], 'vendor': 'Red Hat', 'product': 'Multicluster Global Hub 1.3.4', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:multicluster_globalhub:1.4::el9'], 'vendor': 'Red Hat', 'product': 'Multicluster Global Hub 1.4.5', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:multicluster_globalhub:1.5::el9'], 'vendor': 'Red Hat', 'product': 'Multicluster Global Hub 1.5.4', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:multicluster_globalhub:1.6::el9'], 'vendor': 'Red Hat', 'product': 'Multicluster Global Hub 1.6.2', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_api_data_protection:1.4::el9'], 'vendor': 'Red Hat', 'product': 'OpenShift API for Data Protection 1.4', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_api_data_protection:1.5::el9'], 'vendor': 'Red Hat', 'product': 'OpenShift API for Data Protection 1.5', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:acm:2.15::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Advanced Cluster Management for Kubernetes 2.15', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:ansible_automation_platform:2.6::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Ansible Automation Platform 2.6', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:hummingbird:1'], 'vendor': 'Red Hat', 'product': 'Red Hat Hardened Images', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:lightspeed_for_runtimes:1.0::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Lightspeed (formerly Insights) for Runtimes 1', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_ai:2.25::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift AI 2.25', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_builds:1.6::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift Builds 1.6.5', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_builds:1.7::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift Builds 1.7.3', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_devspaces:3.27::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift Dev Spaces 3.27', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_gitops:1.18::el8'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift GitOps 1.18', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_gitops:1.19::el8'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift GitOps 1.19', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_gitops:1.20::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift GitOps 1.2', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_distributed_tracing:3.9::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift distributed tracing 3.9.3', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:quay:3.16::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Quay 3.16', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:satellite:6.18::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Satellite 6.18', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:trusted_artifact_signer:1.3::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Trusted Artifact Signer 1.3', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:webterminal:1.11::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Web Terminal 1.11', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:webterminal:1.12::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Web Terminal 1.12', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:webterminal:1.13::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Web Terminal 1.13', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:webterminal:1.14::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Web Terminal 1.14', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:webterminal:1.15::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Web Terminal 1.15', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:assisted_installer:2'], 'vendor': 'Red Hat', 'product': 'Assisted Installer for Red Hat OpenShift Container Platform 2', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:confidential_compute_attestation:1'], 'vendor': 'Red Hat', 'product': 'Confidential Compute Attestation', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:deployment_validator_operator'], 'vendor': 'Red Hat', 'product': 'Deployment Validation Operator', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:ext_dns_optr:1'], 'vendor': 'Red Hat', 'product': 'ExternalDNS Operator', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:workload_availability_far:0'], 'vendor': 'Red Hat', 'product': 'Fence Agents Remediation Operator', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:gatekeeper:3'], 'vendor': 'Red Hat', 'product': 'Gatekeeper 3', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:logging:5'], 'vendor': 'Red Hat', 'product': 'Logging Subsystem for Red Hat OpenShift', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:lvms:4'], 'vendor': 'Red Hat', 'product': 'Logical Volume Manager Storage', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:rhmt:1'], 'vendor': 'Red Hat', 'product': 'Migration Toolkit for Containers', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:mirror_registry:1'], 'vendor': 'Red Hat', 'product': 'mirror registry for Red Hat OpenShift', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:ocp_tools'], 'vendor': 'Red Hat', 'product': 'OpenShift Developer Tools and Services', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_lightspeed'], 'vendor': 'Red Hat', 'product': 'OpenShift Lightspeed', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_pipelines:1'], 'vendor': 'Red Hat', 'product': 'OpenShift Pipelines', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:serverless:1'], 'vendor': 'Red Hat', 'product': 'OpenShift Serverless', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:red_hat_3scale_amp:2'], 'vendor': 'Red Hat', 'product': 'Red Hat 3scale API Management Platform 2', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:apache_camel_hawtio:4'], 'vendor': 'Red Hat', 'product': 'Red Hat build of Apache Camel - HawtIO 4', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:certifications:9'], 'vendor': 'Red Hat', 'product': 'Red Hat Certification Program for Red Hat Enterprise Linux 9', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:connectivity_link:1'], 'vendor': 'Red Hat', 'product': 'Red Hat Connectivity Link 1', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:rhdh:1'], 'vendor': 'Red Hat', 'product': 'Red Hat Developer Hub', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:edge_manager:1'], 'vendor': 'Red Hat', 'product': 'Red Hat Edge Manager 1', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/o:redhat:enterprise_linux:10'], 'vendor': 'Red Hat', 'product': 'Red Hat Enterprise Linux 10', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/o:redhat:enterprise_linux:7'], 'vendor': 'Red Hat', 'product': 'Red Hat Enterprise Linux 7', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/o:redhat:enterprise_linux:8'], 'vendor': 'Red Hat', 'product': 'Red Hat Enterprise Linux 8', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/o:redhat:enterprise_linux:9'], 'vendor': 'Red Hat', 'product': 'Red Hat Enterprise Linux 9', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:enterprise_linux_ai:3'], 'vendor': 'Red Hat', 'product': 'Red Hat Enterprise Linux AI (RHEL AI) 3', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_cluster_manager_cli:1'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift Cluster Manager CLI', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift:4'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift Container Platform 4', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_data_foundation:4'], 'vendor': 'Red Hat', 'product': 'Red Hat Openshift Data Foundation 4', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_service_on_aws:1'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift on AWS', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openstack:16.2'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenStack Platform 16.2', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openstack:18.0'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenStack Platform 18.0', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:quay:3'], 'vendor': 'Red Hat', 'product': 'Red Hat Quay 3', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:satellite:6'], 'vendor': 'Red Hat', 'product': 'Red Hat Satellite 6', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:amq_streams:3'], 'vendor': 'Red Hat', 'product': 'streams for Apache Kafka 3', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:zero_trust_workload_identity_manager:1'], 'vendor': 'Red Hat', 'product': 'Zero Trust Workload Identity Manager', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:zero_trust_workload_identity_manager:0'], 'vendor': 'Red Hat', 'product': 'Zero Trust Workload Identity Manager - Tech Preview', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:cert_manager:1'], 'vendor': 'Red Hat', 'product': 'cert-manager Operator for Red Hat OpenShift', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:openshift_compliance_operator:1'], 'vendor': 'Red Hat', 'product': 'Compliance Operator', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:cryostat:4'], 'vendor': 'Red Hat', 'product': 'Cryostat 4', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:openshift_custom_metrics_autoscaler:2'], 'vendor': 'Red Hat', 'product': 'Custom Metric Autoscaler operator for Red Hat Openshift', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:external_secrets_operator:1'], 'vendor': 'Red Hat', 'product': 'External Secrets Operator for Red Hat OpenShift', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:openshift_file_integrity_operator:1'], 'vendor': 'Red Hat', 'product': 'File Integrity Operator', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:workload_availability_mdr:0'], 'vendor': 'Red Hat', 'product': 'Machine Deletion Remediation Operator', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:migration_toolkit_applications:8'], 'vendor': 'Red Hat', 'product': 'Migration Toolkit for Applications 8', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:mirror_registry:2'], 'vendor': 'Red Hat', 'product': 'mirror registry for Red Hat OpenShift 2', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:multicluster_engine'], 'vendor': 'Red Hat', 'product': 'Multicluster Engine for Kubernetes', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:network_observ_optr:1'], 'vendor': 'Red Hat', 'product': 'Network Observability Operator', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:workload_availability_nhc:0'], 'vendor': 'Red Hat', 'product': 'Node HealthCheck Operator', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:service_mesh:2'], 'vendor': 'Red Hat', 'product': 'OpenShift Service Mesh 2', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:service_mesh:3'], 'vendor': 'Red Hat', 'product': 'OpenShift Service Mesh 3', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:openshift_power_monitoring'], 'vendor': 'Red Hat', 'product': 'Power monitoring for Red Hat OpenShift', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:advanced_cluster_security:4'], 'vendor': 'Red Hat', 'product': 'Red Hat Advanced Cluster Security 4', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:ansible_automation_platform:2'], 'vendor': 'Red Hat', 'product': 'Red Hat Ansible Automation Platform 2', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:openshift_ai'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift AI (RHOAI)', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:windows_machine_config'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift for Windows Containers', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:container_native_virtualization:4'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift Virtualization 4', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:service_interconnect:1'], 'vendor': 'Red Hat', 'product': 'Red Hat Service Interconnect 1', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:service_interconnect:2'], 'vendor': 'Red Hat', 'product': 'Red Hat Service Interconnect 2', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:openshift_security_profiles_operator:1'], 'vendor': 'Red Hat', 'product': 'Security Profiles Operator', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:stf:1.5'], 'vendor': 'Red Hat', 'product': 'Service Telemetry Framework 1.5', 'defaultStatus': 'unaffected'}]
  • CVE Modified by 0b0ca135-0b70-47e7-9f44-1890c2a1c46c

    Jun. 30, 2026

    Action Type Old Value New Value
    Added Affected [{'cpes': ['cpe:/a:redhat:openstack:17.1', 'cpe:/a:redhat:openstack:17.1::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenStack Platform 17.1', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/o:redhat:enterprise_linux_eus:10.0'], 'vendor': 'Red Hat', 'product': 'Red Hat Enterprise Linux AppStream EUS (v. 10.0)', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/o:redhat:enterprise_linux:10.1', 'cpe:/o:redhat:enterprise_linux:10.2'], 'vendor': 'Red Hat', 'product': 'Red Hat Enterprise Linux AppStream (v. 10)', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:rhel_eus:9.6::appstream'], 'vendor': 'Red Hat', 'product': 'Red Hat Enterprise Linux AppStream EUS (v.9.6)', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:enterprise_linux:9::appstream'], 'vendor': 'Red Hat', 'product': 'Red Hat Enterprise Linux AppStream (v. 9)', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:devworkspace:0.40::el9'], 'vendor': 'Red Hat', 'product': 'DevWorkspace Operator 0.4', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:logging:6.0::el9'], 'vendor': 'Red Hat', 'product': 'Logging Subsystem for Red Hat OpenShift 6.0', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:logging:6.2::el9'], 'vendor': 'Red Hat', 'product': 'Logging Subsystem for Red Hat OpenShift 6.2', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:logging:6.4::el9'], 'vendor': 'Red Hat', 'product': 'Logging Subsystem for Red Hat OpenShift 6.4', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:multicluster_globalhub:1.3::el9'], 'vendor': 'Red Hat', 'product': 'Multicluster Global Hub 1.3.4', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:multicluster_globalhub:1.4::el9'], 'vendor': 'Red Hat', 'product': 'Multicluster Global Hub 1.4.5', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:multicluster_globalhub:1.5::el9'], 'vendor': 'Red Hat', 'product': 'Multicluster Global Hub 1.5.4', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:multicluster_globalhub:1.6::el9'], 'vendor': 'Red Hat', 'product': 'Multicluster Global Hub 1.6.2', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_api_data_protection:1.4::el9'], 'vendor': 'Red Hat', 'product': 'OpenShift API for Data Protection 1.4', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_api_data_protection:1.5::el9'], 'vendor': 'Red Hat', 'product': 'OpenShift API for Data Protection 1.5', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:acm:2.15::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Advanced Cluster Management for Kubernetes 2.15', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:ansible_automation_platform:2.6::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Ansible Automation Platform 2.6', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:hummingbird:1'], 'vendor': 'Red Hat', 'product': 'Red Hat Hardened Images', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:lightspeed_for_runtimes:1.0::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Lightspeed (formerly Insights) for Runtimes 1', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_ai:2.25::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift AI 2.25', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_builds:1.6::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift Builds 1.6.5', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_builds:1.7::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift Builds 1.7.3', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_devspaces:3.27::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift Dev Spaces 3.27', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_gitops:1.18::el8'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift GitOps 1.18', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_gitops:1.19::el8'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift GitOps 1.19', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_gitops:1.20::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift GitOps 1.2', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_distributed_tracing:3.9::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift distributed tracing 3.9.3', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:quay:3.16::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Quay 3.16', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:satellite:6.18::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Satellite 6.18', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:trusted_artifact_signer:1.3::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Trusted Artifact Signer 1.3', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:webterminal:1.11::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Web Terminal 1.11', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:webterminal:1.12::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Web Terminal 1.12', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:webterminal:1.13::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Web Terminal 1.13', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:webterminal:1.14::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Web Terminal 1.14', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:webterminal:1.15::el9'], 'vendor': 'Red Hat', 'product': 'Red Hat Web Terminal 1.15', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:assisted_installer:2'], 'vendor': 'Red Hat', 'product': 'Assisted Installer for Red Hat OpenShift Container Platform 2', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:confidential_compute_attestation:1'], 'vendor': 'Red Hat', 'product': 'Confidential Compute Attestation', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:deployment_validator_operator'], 'vendor': 'Red Hat', 'product': 'Deployment Validation Operator', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:ext_dns_optr:1'], 'vendor': 'Red Hat', 'product': 'ExternalDNS Operator', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:workload_availability_far:0'], 'vendor': 'Red Hat', 'product': 'Fence Agents Remediation Operator', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:gatekeeper:3'], 'vendor': 'Red Hat', 'product': 'Gatekeeper 3', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:logging:5'], 'vendor': 'Red Hat', 'product': 'Logging Subsystem for Red Hat OpenShift', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:lvms:4'], 'vendor': 'Red Hat', 'product': 'Logical Volume Manager Storage', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:migration_toolkit_applications:8'], 'vendor': 'Red Hat', 'product': 'Migration Toolkit for Applications 8', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:rhmt:1'], 'vendor': 'Red Hat', 'product': 'Migration Toolkit for Containers', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:mirror_registry:1'], 'vendor': 'Red Hat', 'product': 'mirror registry for Red Hat OpenShift', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:ocp_tools'], 'vendor': 'Red Hat', 'product': 'OpenShift Developer Tools and Services', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_lightspeed'], 'vendor': 'Red Hat', 'product': 'OpenShift Lightspeed', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_pipelines:1'], 'vendor': 'Red Hat', 'product': 'OpenShift Pipelines', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:serverless:1'], 'vendor': 'Red Hat', 'product': 'OpenShift Serverless', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:red_hat_3scale_amp:2'], 'vendor': 'Red Hat', 'product': 'Red Hat 3scale API Management Platform 2', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:apache_camel_hawtio:4'], 'vendor': 'Red Hat', 'product': 'Red Hat build of Apache Camel - HawtIO 4', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:certifications:9'], 'vendor': 'Red Hat', 'product': 'Red Hat Certification Program for Red Hat Enterprise Linux 9', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:connectivity_link:1'], 'vendor': 'Red Hat', 'product': 'Red Hat Connectivity Link 1', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:rhdh:1'], 'vendor': 'Red Hat', 'product': 'Red Hat Developer Hub', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:edge_manager:1'], 'vendor': 'Red Hat', 'product': 'Red Hat Edge Manager 1', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/o:redhat:enterprise_linux:10'], 'vendor': 'Red Hat', 'product': 'Red Hat Enterprise Linux 10', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/o:redhat:enterprise_linux:7'], 'vendor': 'Red Hat', 'product': 'Red Hat Enterprise Linux 7', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/o:redhat:enterprise_linux:8'], 'vendor': 'Red Hat', 'product': 'Red Hat Enterprise Linux 8', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/o:redhat:enterprise_linux:9'], 'vendor': 'Red Hat', 'product': 'Red Hat Enterprise Linux 9', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:enterprise_linux_ai:3'], 'vendor': 'Red Hat', 'product': 'Red Hat Enterprise Linux AI (RHEL AI) 3', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_cluster_manager_cli:1'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift Cluster Manager CLI', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift:4'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift Container Platform 4', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_data_foundation:4'], 'vendor': 'Red Hat', 'product': 'Red Hat Openshift Data Foundation 4', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openshift_service_on_aws:1'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift on AWS', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openstack:16.2'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenStack Platform 16.2', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:openstack:18.0'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenStack Platform 18.0', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:quay:3'], 'vendor': 'Red Hat', 'product': 'Red Hat Quay 3', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:satellite:6'], 'vendor': 'Red Hat', 'product': 'Red Hat Satellite 6', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:amq_streams:3'], 'vendor': 'Red Hat', 'product': 'streams for Apache Kafka 3', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:zero_trust_workload_identity_manager:1'], 'vendor': 'Red Hat', 'product': 'Zero Trust Workload Identity Manager', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:zero_trust_workload_identity_manager:0'], 'vendor': 'Red Hat', 'product': 'Zero Trust Workload Identity Manager - Tech Preview', 'defaultStatus': 'affected'}, {'cpes': ['cpe:/a:redhat:cert_manager:1'], 'vendor': 'Red Hat', 'product': 'cert-manager Operator for Red Hat OpenShift', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:openshift_compliance_operator:1'], 'vendor': 'Red Hat', 'product': 'Compliance Operator', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:cryostat:4'], 'vendor': 'Red Hat', 'product': 'Cryostat 4', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:openshift_custom_metrics_autoscaler:2'], 'vendor': 'Red Hat', 'product': 'Custom Metric Autoscaler operator for Red Hat Openshift', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:external_secrets_operator:1'], 'vendor': 'Red Hat', 'product': 'External Secrets Operator for Red Hat OpenShift', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:openshift_file_integrity_operator:1'], 'vendor': 'Red Hat', 'product': 'File Integrity Operator', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:workload_availability_mdr:0'], 'vendor': 'Red Hat', 'product': 'Machine Deletion Remediation Operator', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:mirror_registry:2'], 'vendor': 'Red Hat', 'product': 'mirror registry for Red Hat OpenShift 2', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:multicluster_engine'], 'vendor': 'Red Hat', 'product': 'Multicluster Engine for Kubernetes', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:network_observ_optr:1'], 'vendor': 'Red Hat', 'product': 'Network Observability Operator', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:workload_availability_nhc:0'], 'vendor': 'Red Hat', 'product': 'Node HealthCheck Operator', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:service_mesh:2'], 'vendor': 'Red Hat', 'product': 'OpenShift Service Mesh 2', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:service_mesh:3'], 'vendor': 'Red Hat', 'product': 'OpenShift Service Mesh 3', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:openshift_power_monitoring'], 'vendor': 'Red Hat', 'product': 'Power monitoring for Red Hat OpenShift', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:advanced_cluster_security:4'], 'vendor': 'Red Hat', 'product': 'Red Hat Advanced Cluster Security 4', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:ansible_automation_platform:2'], 'vendor': 'Red Hat', 'product': 'Red Hat Ansible Automation Platform 2', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:openshift_ai'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift AI (RHOAI)', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:windows_machine_config'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift for Windows Containers', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:container_native_virtualization:4'], 'vendor': 'Red Hat', 'product': 'Red Hat OpenShift Virtualization 4', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:service_interconnect:1'], 'vendor': 'Red Hat', 'product': 'Red Hat Service Interconnect 1', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:service_interconnect:2'], 'vendor': 'Red Hat', 'product': 'Red Hat Service Interconnect 2', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:openshift_security_profiles_operator:1'], 'vendor': 'Red Hat', 'product': 'Security Profiles Operator', 'defaultStatus': 'unaffected'}, {'cpes': ['cpe:/a:redhat:stf:1.5'], 'vendor': 'Red Hat', 'product': 'Service Telemetry Framework 1.5', 'defaultStatus': 'unaffected'}]
    Added CVSS V3.1 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
    Added CWE CWE-295
    Added Reference https://access.redhat.com/errata/RHSA-2026:10125
    Added Reference https://access.redhat.com/errata/RHSA-2026:10158
    Added Reference https://access.redhat.com/errata/RHSA-2026:10169
    Added Reference https://access.redhat.com/errata/RHSA-2026:10175
    Added Reference https://access.redhat.com/errata/RHSA-2026:10184
    Added Reference https://access.redhat.com/errata/RHSA-2026:10225
    Added Reference https://access.redhat.com/errata/RHSA-2026:10250
    Added Reference https://access.redhat.com/errata/RHSA-2026:10929
    Added Reference https://access.redhat.com/errata/RHSA-2026:11800
    Added Reference https://access.redhat.com/errata/RHSA-2026:13545
    Added Reference https://access.redhat.com/errata/RHSA-2026:14879
    Added Reference https://access.redhat.com/errata/RHSA-2026:19022
    Added Reference https://access.redhat.com/errata/RHSA-2026:19049
    Added Reference https://access.redhat.com/errata/RHSA-2026:19132
    Added Reference https://access.redhat.com/errata/RHSA-2026:19181
    Added Reference https://access.redhat.com/errata/RHSA-2026:19375
    Added Reference https://access.redhat.com/errata/RHSA-2026:21769
    Added Reference https://access.redhat.com/errata/RHSA-2026:22347
    Added Reference https://access.redhat.com/errata/RHSA-2026:22423
    Added Reference https://access.redhat.com/errata/RHSA-2026:22450
    Added Reference https://access.redhat.com/errata/RHSA-2026:22714
    Added Reference https://access.redhat.com/errata/RHSA-2026:22862
    Added Reference https://access.redhat.com/errata/RHSA-2026:22937
    Added Reference https://access.redhat.com/errata/RHSA-2026:23228
    Added Reference https://access.redhat.com/errata/RHSA-2026:23345
    Added Reference https://access.redhat.com/errata/RHSA-2026:26568
    Added Reference https://access.redhat.com/errata/RHSA-2026:26585
    Added Reference https://access.redhat.com/errata/RHSA-2026:28038
    Added Reference https://access.redhat.com/errata/RHSA-2026:28047
    Added Reference https://access.redhat.com/errata/RHSA-2026:29854
    Added Reference https://access.redhat.com/errata/RHSA-2026:5110
    Added Reference https://access.redhat.com/errata/RHSA-2026:5549
    Added Reference https://access.redhat.com/errata/RHSA-2026:7291
    Added Reference https://access.redhat.com/errata/RHSA-2026:8151
    Added Reference https://access.redhat.com/errata/RHSA-2026:8167
    Added Reference https://access.redhat.com/errata/RHSA-2026:8337
    Added Reference https://access.redhat.com/errata/RHSA-2026:8338
    Added Reference https://access.redhat.com/errata/RHSA-2026:8842
    Added Reference https://access.redhat.com/errata/RHSA-2026:9052
    Added Reference https://access.redhat.com/errata/RHSA-2026:9385
    Added Reference https://access.redhat.com/errata/RHSA-2026:9697
    Added Reference https://access.redhat.com/errata/RHSA-2026:9698
    Added Reference https://access.redhat.com/errata/RHSA-2026:9699
    Added Reference https://access.redhat.com/errata/RHSA-2026:9872
    Added Reference https://access.redhat.com/security/cve/CVE-2026-27137
    Added Reference https://bugzilla.redhat.com/show_bug.cgi?id=2445345
    Added Reference https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-27137.json
  • CVE Modified by [email protected]

    Jun. 17, 2026

    Action Type Old Value New Value
    Added Affected [{'vendor': 'Go standard library', 'product': 'crypto/x509', 'versions': [{'status': 'affected', 'version': '1.26.0-0', 'lessThan': '1.26.1', 'versionType': 'semver'}], 'packageName': 'crypto/x509', 'collectionURL': 'https://pkg.go.dev', 'defaultStatus': 'unaffected', 'programRoutines': [{'name': 'newEmailConstraints'}, {'name': 'emailConstraints.query'}, {'name': 'checkConstraints'}, {'name': 'checkChainConstraints'}, {'name': 'parseMailboxes'}, {'name': 'Certificate.Verify'}]}]
  • CVE Modified by 134c704f-9b21-4f2e-91b3-4a467353bcc0

    Jun. 17, 2026

    Action Type Old Value New Value
    Added SSVC {'id': 'CVE-2026-27137', 'role': 'CISA Coordinator', 'options': [{'exploitation': 'none'}, {'automatable': 'yes'}, {'technicalImpact': 'partial'}], 'version': '2.0.3', 'timestamp': '2026-03-10T13:32:09.097820Z'}
  • Initial Analysis by [email protected]

    Apr. 21, 2026

    Action Type Old Value New Value
    Added CWE CWE-295
    Added CPE Configuration OR *cpe:2.3:a:golang:go:1.26.0:*:*:*:*:*:*:*
    Added Reference Type Go Project: https://go.dev/cl/752182 Types: Mailing List
    Added Reference Type Go Project: https://go.dev/issue/77952 Types: Issue Tracking
    Added Reference Type Go Project: https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk Types: Release Notes
    Added Reference Type Go Project: https://pkg.go.dev/vuln/GO-2026-4599 Types: Vendor Advisory
  • CVE Modified by 134c704f-9b21-4f2e-91b3-4a467353bcc0

    Mar. 10, 2026

    Action Type Old Value New Value
    Added CVSS V3.1 AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  • New CVE Received by [email protected]

    Mar. 06, 2026

    Action Type Old Value New Value
    Added Description When verifying a certificate chain which contains a certificate containing multiple email address constraints which share common local portions but different domain portions, these constraints will not be properly applied, and only the last constraint will be considered.
    Added Reference https://go.dev/cl/752182
    Added Reference https://go.dev/issue/77952
    Added Reference https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk
    Added Reference https://pkg.go.dev/vuln/GO-2026-4599
EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.