rubyla

CVE-2026-1531 (foreman_kubevirt): foreman_kubevirt disables SSL verification if a Certificate Authority (CA) certificate is not explicitly set

A critical security vulnerability (CVE-2026-1531) in foreman_kubevirt allows man-in-the-middle attacks when connecting to OpenShift. The flaw occurs because SSL verification is disabled by default when no Certificate Authority certificate is explicitly configured, enabling attackers to intercept network traffic and potentially

1m read timeFrom rubysec.com
Post cover image
Table of contents
ADVISORIESGEMSEVERITYPATCHED VERSIONSDESCRIPTIONRELATED

Sort: