What is CVE-2026-54100?

CVE-2026-54100 is a high-severity vulnerability in Red Hat Openshift Container Platform 4, classified under Improper Certificate Validation. CVSS score: 8.3/10. Published 2026-06-22.

How severe is CVE-2026-54100?

High severity. CVSS v3 base score is 8.3 out of 10.

Vulnerability in Red Hat Openshift Container Platform 4

CVE-2026-54100

A flaw was found in the Windows Machine Config Operator (WMCO) for Red Hat OpenShift Container Platform. WMCO establishes SSH connections to Windows worker nodes without verifying the remote server host key. An adjacent-network attacker wh…

Vulnerability class: Improper Certificate Validation

CVSS v3 metric

CVSS v3 base score 8.3 (High). Vector: CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H.

Affected products

Weakness classification (CWE)

CWE-295 — Improper Certificate Validation

References

secalert@redhat.com (x_refsource_REDHAT, vdb-entry)
secalert@redhat.com (x_refsource_REDHAT, issue-tracking)

Frequently asked questions

What is CVE-2026-54100?: CVE-2026-54100 is a high-severity vulnerability in Red Hat Openshift Container Platform 4, classified under Improper Certificate Validation. CVSS score: 8.3/10. Published 2026-06-22.
How severe is CVE-2026-54100?: High severity. CVSS v3 base score is 8.3 out of 10.