CVE-2026-42965
Last modified
CVE-2026-42965 is a medium-severity vulnerability rated 6.5/10 on the CVSS scale. A flaw was found in the OpenShift Router. A user with EndpointSlice write access can exploit this vulnerability by creating a Service backed by an FQDN (Fully Qualified Domain Name) EndpointSlice that resolves to a cloud metadata endpoint. EPSS estimates a 0.21% chance of exploitation in the next 30 days.
Description
A flaw was found in the OpenShift Router. A user with EndpointSlice write access can exploit this vulnerability by creating a Service backed by an FQDN (Fully Qualified Domain Name) EndpointSlice that resolves to a cloud metadata endpoint. This allows the router to proxy requests to the cloud metadata endpoint, leading to the disclosure of instance credentials and other sensitive metadata. This bypasses previous security measures for validating IP addresses.
Metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Redhat | Openshift Container Platform | 4.0 |
| Redhat | Openshift Router | All versions |
References
- https://access.redhat.com/security/cve/CVE-2026-42965Vendor Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2483184Issue Tracking, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Analyzed
Frequently Asked Questions
What is CVE-2026-42965?
How severe is CVE-2026-42965?
How do I fix CVE-2026-42965?
Are you affected by CVE-2026-42965?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST