CVE-2026-42965

Name: CVE-2026-42965 — Vulnerability Record
Brand: Quanteta Data Lab
SKU: CVE-2026-42965

HIGH

CVSS v3.1: 7.7 · EPSS: 0.0003 (9.5 percentile)

NetworkNo user interactionSSRF

Source data as of: 2026-06-09 05:05:17 UTC

At a glance

Severity: HIGH
CVSS: 7.7 v3.1 · NVD
EPSS: 0.0003 (9.5 percentile) · FIRST.org
CISA KEV: No
Type: SSRF · NVD CWE
Attack conditions (CVSS vector): NetworkNo user interaction · Source: NVD Vector
Affected vendors: redhat
Published: 2026-05-29 · Modified: 2026-06-08
References: Jump to references (2)

CVSS / EPSS / KEV

CVSS v3.1 7.7 / 10 HIGH Source: NVD

EPSS 0.0003 9.5 percentile Source: FIRST.org

CISA KEV No Source: CISA

Source — CVSS: NVD · EPSS: FIRST.org · KEV: CISA. Data & Sources

Description

A flaw was found in the OpenShift Router. A user with EndpointSlice write access can exploit this vulnerability by creating a Service backed by an FQDN (Fully Qualified Domain Name) EndpointSlice that resolves to a cloud metadata endpoint. This allows the router to proxy requests to the cloud metadata endpoint, leading to the disclosure of instance credentials and other sensitive metadata. This bypasses previous security measures for validating IP addresses.

Record details

CVE ID: CVE-2026-42965
CVSS (v3.1): 7.7 (HIGH)
Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
Exploitability subscore: 3.1
Impact subscore: 4.0
EPSS: 0.0003 (9.5 percentile) — 2026-06-09
CISA KEV: No
Weakness (CWE): CWE-918
Affected vendors: redhat
Affected configurations (CPE): 2
Published: 2026-05-29
Modified: 2026-06-08
Status: Analyzed

References

Reference URLs as listed by NVD, grouped by a mechanical match on the link's host/pattern. Labels describe the link type only.

← Back to all records

CVE-2026-42965

At a glance

CVSS / EPSS / KEV

Description

Record details

References

Related records

Same affected vendor

Same weakness type (CWE)

Published the same year