CVE-2026-1784— Ose-cluster-ingress-operator: remote code execution through haproxy configuration injection
Possible ATT&CK Techniques 1AI
T1190 · Exploit Public-Facing ApplicationAffected Version Matrix 2
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Red Hat | Red Hat OpenShift Container Platform 4 | any | affected |
any | affected |
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-1784
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Ose-cluster-ingress-operator: remote code execution through haproxy configuration injection
Source: NVD (National Vulnerability Database)
Vulnerability Description
The Route OpenShift resource allows to define routes to make pods reachable at a subdomain through HAProxy. It was found that the checks performed on the spec.path YAML stanza in a Route document was insufficient and could allow a controlled injection of the HAProxy configuration.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
系统设置或配置在外部可控制
Source: NVD (National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Red Hat | Red Hat OpenShift Container Platform 4 | - | cpe:/a:redhat:openshift:4 | |
| Red Hat | Red Hat OpenShift Container Platform 4 | - | cpe:/a:redhat:openshift:4 |
II. Public POCs for CVE-2026-1784
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-1784
请登录查看更多情报信息。
Vendor Advisories for CVE-2026-1784 (1)
IV. Related Vulnerabilities
Same product: Red Hat OpenShift Container Platform 4
- CVE-2026-10533
Openshift: openshift: non-admin user can bypass resourcequot - CVE-2026-42965
Openshift/router: openshift/router: cloud metadata ssrf via - CVE-2026-46579
Openshift/router: openshift/router: mtls client certificate - CVE-2026-7309
Openshift-controller-manager: openshift container platform: - CVE-2025-14443
Ose-openshift-apiserver: openshift api server: server-side r
Same vendor: Red Hat
- CVE-2026-5419
Guntls: gnutls: information disclosure via timing side-chann - CVE-2026-43958
Rrdtool: rrdtool: stack buffer overflow allows local code ex - CVE-2026-10118
Poppler: integer overflow in poppler splashoutputdev::tiling - CVE-2026-10533
Openshift: openshift: non-admin user can bypass resourcequot - CVE-2026-10517
Clair: clair: unauthenticated ssrf via manifest layer uri en
Same weakness: CWE-15
- CVE-2019-25716
Dräger Infinity Delta/Kappa Patient Monitor DoS via Malforme - CVE-2026-45087
Dalfox: Unauthenticated Remote Code Execution via `found-act - CVE-2026-43531
OpenClaw < 2026.4.9 - Environment Variable Injection via Wor - CVE-2026-41384
OpenClaw < 2026.3.24 - Environment Variable Injection via Wo - CVE-2026-41294
OpenClaw < 2026.3.28 - Environment Variable Injection via CW
V. Comments for CVE-2026-1784
No comments yet