Vulnerabilities > Redhat > Openshift > 4.9
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-09 | CVE-2022-3259 | Improper Initialization vulnerability in Redhat Openshift 4.9 Openshift 4.9 does not use HTTP Strict Transport Security (HSTS) which may allow man-in-the-middle (MITM) attacks. | 7.4 |
| 2022-12-08 | CVE-2022-3260 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Redhat Openshift 4.9 The response header has not enabled X-FRAME-OPTIONS, Which helps prevents against Clickjacking attack.. | 4.8 |
| 2022-12-08 | CVE-2022-3262 | Insecure Default Initialization of Resource vulnerability in Redhat Openshift 4.9 A flaw was found in Openshift. | 8.1 |
| 2022-09-01 | CVE-2022-2403 | Exposure of System Data to an Unauthorized Control Sphere vulnerability in Redhat Openshift 4.9 A credentials leak was found in the OpenShift Container Platform. | 6.5 |
| 2022-04-11 | CVE-2021-4047 | Improper Input Validation vulnerability in Redhat Openshift 4.9 The release of OpenShift 4.9.6 included four CVE fixes for the haproxy package, however the patch for CVE-2021-39242 was missing. | 7.5 |