-
Vulnerability
-
Resolution: Unresolved
-
Critical
-
ACM 2.8.1
-
Security & Compliance
-
0
-
False
-
-
False
-
-
-
SF Train-26
-
Important
-
None
Description of problem:
CVE-2025-22868
klusterlet-addon-controller https://github.com/stolostron/klusterlet-addon-controller/pull/380
clusterlifecycle-state-metrics https://github.com/stolostron/clusterlifecycle-state-metrics/pull/286
managedcluster-import-controller https://github.com/stolostron/managedcluster-import-controller/pull/546
multicloud-manager https://github.com/stolostron/multicloud-operators-foundation/pull/914
cluster-proxy. https://github.com/stolostron/cluster-proxy/pull/286
cluster-proxy-addon: https://github.com/stolostron/cluster-proxy-addon/pull/320
managed-serviceaccount https://github.com/stolostron/managed-serviceaccount/pull/260
CVE-2025-22869
ocm(work,placement,addon,registration, registration-operator) https://github.com/stolostron/ocm/pull/237
klusterlet-addon-controller no impact
clusterlifecycle-state-metrics no impact but upgrade the package https://github.com/stolostron/clusterlifecycle-state-metrics/pull/310
managedcluster-import-controller https://github.com/stolostron/managedcluster-import-controller/pull/589
multicloud-manager https://github.com/stolostron/multicloud-operators-foundation/pull/932
cluster-proxy. https://github.com/stolostron/cluster-proxy/pull/286
cluster-proxy-addon: https://github.com/stolostron/cluster-proxy-addon/pull/320
managed-serviceaccount https://github.com/stolostron/managed-serviceaccount/pull/260
Version-Release number of selected component (if applicable):
How reproducible:
Steps to Reproduce:
- ...
Actual results:
Expected results:
Additional info:
- is cloned by
-
-
- Review
-
