Red hat openshift data science (rhods)
This hub aggregates every CVE we track for Red hat openshift data science (rhods), a product in the operating systems space. Use it to gauge the current risk picture and drill into individual advisories.
Operating Systemson-prem
16
CVEs tracked
2
Critical
8
High
0
In CISA KEV
Severity distribution
HIGH8MEDIUM6CRITICAL2
Monthly trend
0
1
1
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Red hat openshift data science (rhods).
- CVE-2024-45801Tampering by prototype polution in DOMPurify7.3
- CVE-2024-7557Odh-dashboard: odh-model-controller: cross-model authentication bypass in openshift ai8.8
- CVE-2024-28863node-tar vulnerable to denial of service while parsing a tar file due to lack of folders count validation6.5
- CVE-2023-42282The ip package before 1.1.9 for Node.js might allow SSRF because some IP addresses (such as 0x7f.1) are improperly categorized as globally routable via isPublic.9.8
- CVE-2023-26159Versions of the package follow-redirects before 1.15.4 are vulnerable to Improper Input Validation due to the improper handling of URLs by the url.parse() function. When new URL() throws an error, ...7.3
- CVE-2023-39325HTTP/2 rapid reset can cause excessive work in net/http7.5
- CVE-2023-43804`Cookie` HTTP header isn't stripped on cross-origin redirects5.9
- CVE-2023-3361S3 credentials included when exporting elyra notebook7.7
- CVE-2023-0923Odh-notebook-controller-container: missing authorization allows for file contents disclosure8.8
- CVE-2023-4039GCC's-fstack-protector fails to guard dynamically-sized local variables on AArch644.8
- CVE-2023-3978Improper rendering of text nodes in golang.org/x/net/html6.1
- CVE-2023-29409Large RSA keys can cause high CPU usage in crypto/tls5.3
- CVE-2023-24539Improper sanitization of CSS values in html/template7.3
- CVE-2023-24540Improper handling of JavaScript whitespace in html/template9.8
- CVE-2022-41725Excessive resource consumption in mime/multipart7.5
Product normalization is registry-driven with AI assist and human review. How it works