CVE-2026-1784
HIGHDescription
The Route OpenShift resource allows to define routes to make pods reachable at a subdomain through HAProxy. It was found that the checks performed on the spec.path YAML stanza in a Route document was insufficient and could allow a controlled injection of the HAProxy configuration.
CVSS v3.1 Score
EPSS — Exploit Prediction
EPSS estimates the probability that this vulnerability will be exploited in the wild within the next 30 days. A higher score means more likely to be exploited.
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| redhat | openshift_container_platform |
References
Frequently Asked Questions
What is CVE-2026-1784? +
How severe is CVE-2026-1784? +
What products are affected by CVE-2026-1784? +
How do I check if I'm vulnerable to CVE-2026-1784? +
Related Vulnerabilities
For TCAS II systems using transponders compliant with MOPS earlier than RTCA DO-181F, an attacker can impersonate a ground station …
Post-authenticated external control of system web interface configuration setting vulnerability in Danfoss AK-SM8xxA Series prior to 4.3.1, which could allow …
Insufficient configuration management in the listed devices allows authenticated administrators connected to the local network to tamper with the system.
HAX CMS helps manage microsite universe with PHP or NodeJs backends. The PHP version of HAX CMS prior to version …
Via the GUI of the "bestinformed Infoclient", a low-privileged user is by default able to change the server address of …
Socket Firewall is an HTTP/HTTPS proxy server that intercepts package manager requests and enforces security policies by blocking dangerous packages. …