CVE-2025-14443

Sažetak

A flaw was found in ose-openshift-apiserver. This vulnerability allows internal network enumeration, service discovery, limited information disclosure, and potential denial-of-service (DoS) through Server-Side Request Forgery (SSRF) due to missing IP address and network-range validation when processing user-supplied image references.

Reference

https://access.redhat.com/security/cve/CVE-2025-14443
https://bugzilla.redhat.com/show_bug.cgi?id=2420964
https://github.com/tuxerrante/openshift-ssrf

CVSS

Base:	8.5
Impact:	4.7
Exploitability:	3.1

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	LOW

Impact

Povjerljivost	Cjelovitost	Dostupnost
HIGH	NONE	LOW

CVSS vektor

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:L

Zadnje važnije ažuriranje

16-12-2025 - 14:10

Objavljeno

16-12-2025 - 13:15