CVE-2026-46579: OpenShift Router mTLS client cert spoofing via unstripped X-SSL-Client headers

bugzilla.redhat.com 2026-05-29English translation pending; showing Chinese查看中文 →

Referenced CVEs: CVE-2026-46579 · 7.4

文章内图片已隐藏以节省流量 · Upgrade to Pro to view images & offline archive

This content was auto-fetched from bugzilla.redhat.com, cleaned by our LLM pipeline, and translated to English. View original.

More from this source

OpenShift ACM Pull-Secret Info Disclosure via InfraEnv Status (CVE-2026-10101) 2026-05-30 Red Hat OpenShift Router SSRF via FQDN EndpointSlices (CVE-2026-42965) 2026-05-29 CVE-2026-10078: Quay config-tool GitLab OAuth client_secret leaked in URL querystring 2026-05-29 Quay config-tool SSRF in LDAP/SMTP validation (CVE-2026-10052) 2026-05-29 CVE-2026-6324: libsoup HTTP Request Smuggling via Unsigned to Signed Conversion Error 2026-05-29

Offline Archive

Offline screenshot & PDF are Pro-exclusive