Vulnerability Details CVE-2023-0056
An uncontrolled resource consumption vulnerability was discovered in HAProxy which could crash the service. This issue could allow an authenticated remote attacker to run a specially crafted malicious server in an OpenShift cluster. The biggest impact is to availability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 36.7%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2023-0056
-
cpe:2.3:a:fedoraproject:extra_packages_for_enterprise_linux:8.0
-
cpe:2.3:a:haproxy:haproxy:-
-
cpe:2.3:a:redhat:ceph_storage:5.0
-
cpe:2.3:a:redhat:openshift_container_platform:4.10
-
cpe:2.3:a:redhat:openshift_container_platform:4.11
-
cpe:2.3:a:redhat:openshift_container_platform:4.12
-
cpe:2.3:a:redhat:openshift_container_platform_for_ibm_linuxone:4.10
-
cpe:2.3:a:redhat:openshift_container_platform_for_ibm_linuxone:4.11
-
cpe:2.3:a:redhat:openshift_container_platform_for_ibm_linuxone:4.12
-
cpe:2.3:a:redhat:openshift_container_platform_for_power:4.10
-
cpe:2.3:a:redhat:openshift_container_platform_for_power:4.11
-
cpe:2.3:a:redhat:openshift_container_platform_for_power:4.12
-
cpe:2.3:a:redhat:openshift_container_platform_ibm_z_systems:4.10
-
cpe:2.3:a:redhat:openshift_container_platform_ibm_z_systems:4.11
-
cpe:2.3:a:redhat:openshift_container_platform_ibm_z_systems:4.12
-
cpe:2.3:a:redhat:software_collections:-
-
cpe:2.3:o:fedoraproject:fedora:36
-
cpe:2.3:o:fedoraproject:fedora:37
-
cpe:2.3:o:redhat:enterprise_linux:8.0
-
cpe:2.3:o:redhat:enterprise_linux:9.0