Vulnerability in Openshift

CVE-2022-3262

A flaw was found in Openshift. A pod with a DNSPolicy of "ClusterFirst" may incorrectly resolve the hostname based on a service provided. This flaw allows an attacker to supply an incorrect name with the DNS search policy, affecting confid…

EPSS: 0.004 (62.7th percentile) — read the EPSS interpretation.

Affected products

  • N/a Openshift — versions 4.9

Weakness classification (CWE)

References