data/reports/GO-2026-4578.yaml - vulndb - Git at Google

 id: GO-2026-4578
 modules:
     - module: github.com/openshift/openshift-apiserver
       unsupported_versions:
         - last_affected: 0.0.0-alpha.0.0.20260130163947-0eb84cd66658
       vulnerable_at: 4.0.0-alpha.0+incompatible
 summary: |-
     openshift-apiserver: SSRF via Missing IP/Network-Range Validation in
     User-Supplied Image References in github.com/openshift/openshift-apiserver
 cves:
     - CVE-2025-14443
 ghsas:
     - GHSA-gxvv-45f6-3ch8
 references:
     - advisory: https://github.com/advisories/GHSA-gxvv-45f6-3ch8
     - advisory: https://nvd.nist.gov/vuln/detail/CVE-2025-14443
     - fix: https://github.com/openshift/openshift-apiserver/pull/591
     - fix: https://github.com/openshift/openshift-apiserver/pull/599
     - web: https://access.redhat.com/security/cve/CVE-2025-14443
     - web: https://bugzilla.redhat.com/show_bug.cgi?id=2420964
 source:
     id: GHSA-gxvv-45f6-3ch8
     created: 2026-03-06T14:58:18.305809-05:00
 review_status: UNREVIEWED
	id: GO-2026-4578
	modules:
	- module: github.com/openshift/openshift-apiserver
	unsupported_versions:
	- last_affected: 0.0.0-alpha.0.0.20260130163947-0eb84cd66658
	vulnerable_at: 4.0.0-alpha.0+incompatible
	summary: \|-
	openshift-apiserver: SSRF via Missing IP/Network-Range Validation in
	User-Supplied Image References in github.com/openshift/openshift-apiserver
	cves:
	- CVE-2025-14443
	ghsas:
	- GHSA-gxvv-45f6-3ch8
	references:
	- advisory: https://github.com/advisories/GHSA-gxvv-45f6-3ch8
	- advisory: https://nvd.nist.gov/vuln/detail/CVE-2025-14443
	- fix: https://github.com/openshift/openshift-apiserver/pull/591
	- fix: https://github.com/openshift/openshift-apiserver/pull/599
	- web: https://access.redhat.com/security/cve/CVE-2025-14443
	- web: https://bugzilla.redhat.com/show_bug.cgi?id=2420964
	source:
	id: GHSA-gxvv-45f6-3ch8
	created: 2026-03-06T14:58:18.305809-05:00
	review_status: UNREVIEWED