{ "document": { "category": "csaf_base", "csaf_version": "2.0", "distribution": { "tlp": { "label": "WHITE" } }, "lang": "en", "notes": [ { "category": "legal_disclaimer", "text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this portal to enhance access to its information and vulnerabilities. The use of this information is subject to the following terms and conditions:\n\nThe vulnerabilities disclosed in this portal are gathered by NCSC-NL from a variety of open sources, which the user can retrieve from other platforms. NCSC-NL makes every reasonable effort to ensure that the content of this portal is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or real-time keeping up-to-date. NCSC-NL does not control nor guarantee the accuracy, relevance, timeliness or completeness of information obtained from these external sources. The vulnerabilities disclosed in this portal are intended solely for the convenience of professional parties to take appropriate measures to manage the risks posed to the cybersecurity. No rights can be derived from the information provided therein.\n\nNCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of the vulnerabilities disclosed in this portal. This includes damage resulting from the inaccuracy of incompleteness of the information contained in it.\nThe information on this page is subject to Dutch law. All disputes related to or arising from the use of this portal regarding the disclosure of vulnerabilities will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings." } ], "publisher": { "category": "coordinator", "contact_details": "cert@ncsc.nl", "name": "National Cyber Security Centre", "namespace": "https://www.ncsc.nl/" }, "title": "CVE-2026-33211", "tracking": { "current_release_date": "2026-03-31T00:37:57.063784Z", "generator": { "date": "2026-02-17T15:00:00Z", "engine": { "name": "V.E.L.M.A", "version": "1.7" } }, "id": "CVE-2026-33211", "initial_release_date": "2026-03-18T20:44:16.775999Z", "revision_history": [ { "date": "2026-03-18T20:44:16.775999Z", "number": "1", "summary": "CVE created.| Source created.| CVE status created. (valid)| Description created for source.| CVSS created.| References created (2).| CWES updated (1)." }, { "date": "2026-03-18T20:44:29.750842Z", "number": "2", "summary": "NCSC Score created." }, { "date": "2026-03-19T11:39:54.102396Z", "number": "3", "summary": "Source created.| CVE status created. (valid)| Description created for source.| CVSS created.| References created (2).| CWES updated (1)." }, { "date": "2026-03-24T20:45:49.855763Z", "number": "4", "summary": "Source created.| CVE status created. (valid)| Description created for source.| CVSS created.| Products created (1).| Products connected (4).| References created (8).| CWES updated (1)." }, { "date": "2026-03-24T20:45:53.218469Z", "number": "5", "summary": "NCSC Score updated." }, { "date": "2026-03-24T20:51:38.409556Z", "number": "6", "summary": "Unknown change." }, { "date": "2026-03-24T20:57:45.139874Z", "number": "7", "summary": "Source created.| CVE status created. (valid)| Description created for source.| CVSS created.| References created (8).| CWES updated (1)." }, { "date": "2026-03-24T20:57:48.219339Z", "number": "8", "summary": "NCSC Score updated." }, { "date": "2026-03-24T21:37:48.943402Z", "number": "9", "summary": "Source connected.| CVE status created. (valid)| EPSS created." }, { "date": "2026-03-24T21:38:03.457709Z", "number": "10", "summary": "NCSC Score updated." }, { "date": "2026-03-25T00:36:54.752153Z", "number": "11", "summary": "Source created.| CVE status created. (valid)| Description created for source.| CVSS created.| Products connected (53).| Product Identifiers created (6).| Product Remediations created (53).| References created (10).| CWES updated (1).| Vendor_assessment created." }, { "date": "2026-03-25T00:37:05.043233Z", "number": "12", "summary": "NCSC Score updated." }, { "date": "2026-03-25T12:26:03.118953Z", "number": "13", "summary": "Source created.| CVE status created. (valid)| Description created for source.| References created (1)." }, { "date": "2026-03-25T12:26:08.702772Z", "number": "14", "summary": "NCSC Score updated." }, { "date": "2026-03-25T18:13:23.434450Z", "number": "15", "summary": "Source created.| CVE status created. (valid)| Description created for source.| CVSS created.| Products connected (5).| References created (1).| CWES updated (1)." }, { "date": "2026-03-25T18:13:25.331958Z", "number": "16", "summary": "NCSC Score updated." }, { "date": "2026-03-25T21:49:30.158653Z", "number": "17", "summary": "References created (8)." }, { "date": "2026-03-26T00:13:03.294882Z", "number": "18", "summary": "References created (8)." }, { "date": "2026-03-26T16:25:31.500842Z", "number": "19", "summary": "Products connected (4).| Product Identifiers created (5).| Products created (1)." }, { "date": "2026-03-26T16:25:40.367430Z", "number": "20", "summary": "NCSC Score updated." }, { "date": "2026-03-29T03:16:21.796498Z", "number": "21", "summary": "References removed (8)." }, { "date": "2026-03-29T16:14:29.756299Z", "number": "22", "summary": "References created (8)." }, { "date": "2026-03-31T00:37:25.809053Z", "number": "23", "summary": "Source connected.| CVE status created. (valid)| Description created for source.| CVSS created.| Products connected (37).| Product Remediations created (39).| Product Identifiers created (144).| Product Identifiers removed (144).| References created (18).| CWES updated (1)." }, { "date": "2026-03-31T00:37:47.498383Z", "number": "24", "summary": "NCSC Score updated." }, { "date": "2026-03-31T00:37:48.116246Z", "number": "25", "summary": "Source connected.| CVE status created. (valid)| Description created for source.| CVSS created.| Products connected (2).| Product Remediations created (4).| References created (19).| CWES updated (1)." } ], "status": "interim", "version": "25" } }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:rpm/1", "product": { "name": "vers:rpm/1", "product_id": "CSAFPID-1441040", "product_identification_helper": { "cpe": "cpe:/a:redhat:openshift_builds:1" } } } ], "category": "product_name", "name": "Builds for Red Hat OpenShift" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/1", "product": { "name": "vers:rpm/1", "product_id": "CSAFPID-1919971", "product_identification_helper": { "cpe": "cpe:/a:redhat:openshift_pipelines:1" } } } ], "category": "product_name", "name": "OpenShift Pipelines" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/1", "product": { "name": "vers:rpm/1", "product_id": "CSAFPID-1441076", "product_identification_helper": { "cpe": "cpe:/a:redhat:serverless:1" } } } ], "category": "product_name", "name": "OpenShift Serverless" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-1439279", "product_identification_helper": { "cpe": "cpe:/a:redhat:openshift_ai" } } } ], "category": "product_name", "name": "Red Hat OpenShift AI (RHOAI)" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:rpm/1.21", "product": { "name": "vers:rpm/1.21", "product_id": "CSAFPID-5966169", "product_identification_helper": { "cpe": "cpe:/a:redhat:openshift_pipelines:1.21::el9" } } } ], "category": "product_name", "name": "Red Hat OpenShift Pipelines 1.21" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774262601", "product": { "name": "vers:oci/1774262601", "product_id": "CSAFPID-5966171", "product_identification_helper": { "purl": "pkg:oci/pipelines-cache-rhel9@sha256%3Afe6e5cd6c9dca5cb5cf20e26f9406abb4bf4dca5a50146e32bc98090ce4a2a67?arch=s390x&repository_url=registry.redhat.io/openshift-pipelines&tag=1774262601" } } } ], "category": "product_name", "name": "pipelines-cache-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774262437", "product": { "name": "vers:oci/1774262437", "product_id": "CSAFPID-5966172", "product_identification_helper": { "purl": "pkg:oci/pipelines-chains-controller-rhel9@sha256%3Ae589e8566f17e1bf4eed74f3ccd61b2e77d5cab7cb2bb091b76e758e5682a948?arch=amd64&repository_url=registry.redhat.io/openshift-pipelines&tag=1774262437" } } } ], "category": "product_name", "name": "pipelines-chains-controller-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774262633", "product": { "name": "vers:oci/1774262633", "product_id": "CSAFPID-5966170", "product_identification_helper": { "purl": "pkg:oci/pipelines-cli-tkn-rhel9@sha256%3Afa64c0d948ac9564dea11cbd94186f00a08c0dac162f5ec7441f9d859d0646bd?arch=s390x&repository_url=registry.redhat.io/openshift-pipelines&tag=1774262633" } } } ], "category": "product_name", "name": "pipelines-cli-tkn-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774359402", "product": { "name": "vers:oci/1774359402", "product_id": "CSAFPID-5966173", "product_identification_helper": { "purl": "pkg:oci/pipelines-console-plugin-rhel9@sha256%3Af99f5612487516a28ca3e63682afa1350fa60307a97f50c086cc1467d155ca58?arch=s390x&repository_url=registry.redhat.io/openshift-pipelines&tag=1774359402" } } } ], "category": "product_name", "name": "pipelines-console-plugin-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774556221", "product": { "name": "vers:oci/1774556221", "product_id": "CSAFPID-5966174", "product_identification_helper": { "purl": "pkg:oci/pipelines-controller-rhel9@sha256%3Af77cef165f2e2b770833ee3532a473d5a1731502aa5936835c25511a2c37d7c1?arch=arm64&repository_url=registry.redhat.io/openshift-pipelines&tag=1774556221" } } } ], "category": "product_name", "name": "pipelines-controller-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774556409", "product": { "name": "vers:oci/1774556409", "product_id": "CSAFPID-5966175", "product_identification_helper": { "purl": "pkg:oci/pipelines-entrypoint-rhel9@sha256%3Af6553c2db04c86384e30e9bfaea8d4270f19bab9afd7869d27032fe38534b295?arch=arm64&repository_url=registry.redhat.io/openshift-pipelines&tag=1774556409" } } } ], "category": "product_name", "name": "pipelines-entrypoint-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774556211", "product": { "name": "vers:oci/1774556211", "product_id": "CSAFPID-5966176", "product_identification_helper": { "purl": "pkg:oci/pipelines-events-rhel9@sha256%3A94fd1a0b0764991eda81a160f9e4c4087883520c22bb17f9bd9d3167892861cf?arch=s390x&repository_url=registry.redhat.io/openshift-pipelines&tag=1774556211" } } } ], "category": "product_name", "name": "pipelines-events-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774524401", "product": { "name": "vers:oci/1774524401", "product_id": "CSAFPID-5966177", "product_identification_helper": { "purl": "pkg:oci/pipelines-git-init-rhel9@sha256%3Acc5b019293d3aa0f3543982e1900021fcac0568c28e757f60a9e6849c81509c8?arch=arm64&repository_url=registry.redhat.io/openshift-pipelines&tag=1774524401" } } } ], "category": "product_name", "name": "pipelines-git-init-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774269962", "product": { "name": "vers:oci/1774269962", "product_id": "CSAFPID-5966178", "product_identification_helper": { "purl": "pkg:oci/pipelines-hub-api-rhel9@sha256%3A8b6607ca56b500ef61f9cce62230baad7c4d3781271b4a9ef28b14cf39f67d43?arch=arm64&repository_url=registry.redhat.io/openshift-pipelines&tag=1774269962" } } } ], "category": "product_name", "name": "pipelines-hub-api-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774270015", "product": { "name": "vers:oci/1774270015", "product_id": "CSAFPID-5966179", "product_identification_helper": { "purl": "pkg:oci/pipelines-hub-db-migration-rhel9@sha256%3Ae7673ed4b1300b524124a211afcb46f3a4eee2e72ce37dadf1c45527744637cd?arch=s390x&repository_url=registry.redhat.io/openshift-pipelines&tag=1774270015" } } } ], "category": "product_name", "name": "pipelines-hub-db-migration-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774269970", "product": { "name": "vers:oci/1774269970", "product_id": "CSAFPID-5966180", "product_identification_helper": { "purl": "pkg:oci/pipelines-hub-ui-rhel9@sha256%3Aca1af79e6d0f6fbee2c1dac1447fe6ea7a1cae978ca741b34a14da5d1e328b1e?arch=s390x&repository_url=registry.redhat.io/openshift-pipelines&tag=1774269970" } } } ], "category": "product_name", "name": "pipelines-hub-ui-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774262408", "product": { "name": "vers:oci/1774262408", "product_id": "CSAFPID-5966181", "product_identification_helper": { "purl": "pkg:oci/pipelines-manual-approval-gate-controller-rhel9@sha256%3Acab14bb7a768d38f19975a5c5fcef67badfb0308661b3c66f8f889cd8a5fd9ba?arch=s390x&repository_url=registry.redhat.io/openshift-pipelines&tag=1774262408" } } } ], "category": "product_name", "name": "pipelines-manual-approval-gate-controller-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774262474", "product": { "name": "vers:oci/1774262474", "product_id": "CSAFPID-5966182", "product_identification_helper": { "purl": "pkg:oci/pipelines-manual-approval-gate-webhook-rhel9@sha256%3Afdfc7dec489e55f532bfc91c0a9e695f32f6cb9c90b9e87226339910f996293b?arch=amd64&repository_url=registry.redhat.io/openshift-pipelines&tag=1774262474" } } } ], "category": "product_name", "name": "pipelines-manual-approval-gate-webhook-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774556286", "product": { "name": "vers:oci/1774556286", "product_id": "CSAFPID-5966183", "product_identification_helper": { "purl": "pkg:oci/pipelines-nop-rhel9@sha256%3Ad7d5e33d6d124625f1a9b10e8ffd5d0b0fbad8a762aa4988bffd4a4282903c45?arch=arm64&repository_url=registry.redhat.io/openshift-pipelines&tag=1774556286" } } } ], "category": "product_name", "name": "pipelines-nop-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774517672", "product": { "name": "vers:oci/1774517672", "product_id": "CSAFPID-5966184", "product_identification_helper": { "purl": "pkg:oci/pipelines-opc-rhel9@sha256%3Afc14b570389939471ba36f36f8271dcdb6ca39108db6d0d6932b702a6c6cf068?arch=amd64&repository_url=registry.redhat.io/openshift-pipelines&tag=1774517672" } } } ], "category": "product_name", "name": "pipelines-opc-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774871390", "product": { "name": "vers:oci/1774871390", "product_id": "CSAFPID-5966217", "product_identification_helper": { "purl": "pkg:oci/pipelines-operator-bundle@sha256%3A6585794d76cffb3f87fc7eacb905f0dd5f02476f717c911f2c0faf7c4081a080?arch=amd64&repository_url=registry.redhat.io/openshift-pipelines&tag=1774871390" } } } ], "category": "product_name", "name": "pipelines-operator-bundle" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774510798", "product": { "name": "vers:oci/1774510798", "product_id": "CSAFPID-5966185", "product_identification_helper": { "purl": "pkg:oci/pipelines-operator-proxy-rhel9@sha256%3Afff50c6aec2bb0ff8a8000e7e658d3912888cc2f73c992736ccbae15cd6de44e?arch=s390x&repository_url=registry.redhat.io/openshift-pipelines&tag=1774510798" } } } ], "category": "product_name", "name": "pipelines-operator-proxy-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774510867", "product": { "name": "vers:oci/1774510867", "product_id": "CSAFPID-5966186", "product_identification_helper": { "purl": "pkg:oci/pipelines-operator-webhook-rhel9@sha256%3Ad88c1726f97affb28504e955e87c9bfe2d3a559fdfe355b33e2e0a3fd15292ef?arch=ppc64le&repository_url=registry.redhat.io/openshift-pipelines&tag=1774510867" } } } ], "category": "product_name", "name": "pipelines-operator-webhook-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774271891", "product": { "name": "vers:oci/1774271891", "product_id": "CSAFPID-5966187", "product_identification_helper": { "purl": "pkg:oci/pipelines-pipelines-as-code-cli-rhel9@sha256%3A9896eec5067bc7fe27e62bf2d57234a862d225b545093fbe79780702791d6d70?arch=amd64&repository_url=registry.redhat.io/openshift-pipelines&tag=1774271891" } } } ], "category": "product_name", "name": "pipelines-pipelines-as-code-cli-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774271888", "product": { "name": "vers:oci/1774271888", "product_id": "CSAFPID-5966188", "product_identification_helper": { "purl": "pkg:oci/pipelines-pipelines-as-code-controller-rhel9@sha256%3Abb47f22f6aacd520a35b456ee0bf23aeb2cf252e5d1bd88c844aebedf4aae894?arch=ppc64le&repository_url=registry.redhat.io/openshift-pipelines&tag=1774271888" } } } ], "category": "product_name", "name": "pipelines-pipelines-as-code-controller-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774271825", "product": { "name": "vers:oci/1774271825", "product_id": "CSAFPID-5966189", "product_identification_helper": { "purl": "pkg:oci/pipelines-pipelines-as-code-watcher-rhel9@sha256%3Ad4973e6d761878f0432a9076a7a68f307ac83f7f35d68b13def41a24a4bdd0ab?arch=arm64&repository_url=registry.redhat.io/openshift-pipelines&tag=1774271825" } } } ], "category": "product_name", "name": "pipelines-pipelines-as-code-watcher-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774271890", "product": { "name": "vers:oci/1774271890", "product_id": "CSAFPID-5966190", "product_identification_helper": { "purl": "pkg:oci/pipelines-pipelines-as-code-webhook-rhel9@sha256%3Ace403b2b3387abb801b9b6f2e5afa5767681dff121f52ad37e61b872c92607ff?arch=s390x&repository_url=registry.redhat.io/openshift-pipelines&tag=1774271890" } } } ], "category": "product_name", "name": "pipelines-pipelines-as-code-webhook-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774262748", "product": { "name": "vers:oci/1774262748", "product_id": "CSAFPID-5966191", "product_identification_helper": { "purl": "pkg:oci/pipelines-pruner-controller-rhel9@sha256%3Ac34fccd0e1ceb552737963daf0a54a6229f418c91552261e7f4335450d9295f8?arch=amd64&repository_url=registry.redhat.io/openshift-pipelines&tag=1774262748" } } } ], "category": "product_name", "name": "pipelines-pruner-controller-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774262748", "product": { "name": "vers:oci/1774262748", "product_id": "CSAFPID-5966192", "product_identification_helper": { "purl": "pkg:oci/pipelines-pruner-webhook-rhel9@sha256%3A843686d61c12e52ee7648547584d9a564796299d0007e0e7aa0c965eb63fc2c1?arch=s390x&repository_url=registry.redhat.io/openshift-pipelines&tag=1774262748" } } } ], "category": "product_name", "name": "pipelines-pruner-webhook-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774556280", "product": { "name": "vers:oci/1774556280", "product_id": "CSAFPID-5966193", "product_identification_helper": { "purl": "pkg:oci/pipelines-resolvers-rhel9@sha256%3Aa07e7e6d4072cc76b5406749a2329c46576d4ddc4847a949d36bca15bc2e5222?arch=ppc64le&repository_url=registry.redhat.io/openshift-pipelines&tag=1774556280" } } } ], "category": "product_name", "name": "pipelines-resolvers-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774262455", "product": { "name": "vers:oci/1774262455", "product_id": "CSAFPID-5966194", "product_identification_helper": { "purl": "pkg:oci/pipelines-results-api-rhel9@sha256%3Aec6e788ae24d2d378a4081d999a517b9fc99d15b5b43661e6029504e8b262c2a?arch=arm64&repository_url=registry.redhat.io/openshift-pipelines&tag=1774262455" } } } ], "category": "product_name", "name": "pipelines-results-api-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774262451", "product": { "name": "vers:oci/1774262451", "product_id": "CSAFPID-5966195", "product_identification_helper": { "purl": "pkg:oci/pipelines-results-retention-policy-agent-rhel9@sha256%3Ad4b3a99025489a5d1da09431578250a7f26fef68c36d1f2011082c2dcbbc530f?arch=ppc64le&repository_url=registry.redhat.io/openshift-pipelines&tag=1774262451" } } } ], "category": "product_name", "name": "pipelines-results-retention-policy-agent-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774262453", "product": { "name": "vers:oci/1774262453", "product_id": "CSAFPID-5966196", "product_identification_helper": { "purl": "pkg:oci/pipelines-results-watcher-rhel9@sha256%3Acbf1d0cd47405ab5facedf0e224123b8800809d935a044600a971fbf38adf847?arch=ppc64le&repository_url=registry.redhat.io/openshift-pipelines&tag=1774262453" } } } ], "category": "product_name", "name": "pipelines-results-watcher-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774510798", "product": { "name": "vers:oci/1774510798", "product_id": "CSAFPID-5966197", "product_identification_helper": { "purl": "pkg:oci/pipelines-rhel9-operator@sha256%3Af4a0c352eaf9b4152a95a865c4f2316cc9ec99e71e5b4bbad5ca7158eebaa545?arch=ppc64le&repository_url=registry.redhat.io/openshift-pipelines&tag=1774510798" } } } ], "category": "product_name", "name": "pipelines-rhel9-operator" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774252909", "product": { "name": "vers:oci/1774252909", "product_id": "CSAFPID-5966198", "product_identification_helper": { "purl": "pkg:oci/pipelines-serve-tkn-cli-rhel9@sha256%3Aa3e7c10029f48aa52d9a83420370edf00dbe8e3db65f6fce7055ddaada5ad748?arch=amd64&repository_url=registry.redhat.io/openshift-pipelines&tag=1774252909" } } } ], "category": "product_name", "name": "pipelines-serve-tkn-cli-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774556221", "product": { "name": "vers:oci/1774556221", "product_id": "CSAFPID-5966199", "product_identification_helper": { "purl": "pkg:oci/pipelines-sidecarlogresults-rhel9@sha256%3Af6dbed84d2cd1cd90a27b724b9d864a6f3cbcf8446954cb4b45d29204892dee0?arch=arm64&repository_url=registry.redhat.io/openshift-pipelines&tag=1774556221" } } } ], "category": "product_name", "name": "pipelines-sidecarlogresults-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774260907", "product": { "name": "vers:oci/1774260907", "product_id": "CSAFPID-5966200", "product_identification_helper": { "purl": "pkg:oci/pipelines-triggers-controller-rhel9@sha256%3Ad533060e31d23112711137094a6727a10ed7a0f6fa6cbf1feb519b32b7f24392?arch=amd64&repository_url=registry.redhat.io/openshift-pipelines&tag=1774260907" } } } ], "category": "product_name", "name": "pipelines-triggers-controller-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774260980", "product": { "name": "vers:oci/1774260980", "product_id": "CSAFPID-5966201", "product_identification_helper": { "purl": "pkg:oci/pipelines-triggers-core-interceptors-rhel9@sha256%3Ad78d2aad8bd05fedfa69e9d85a79eec5d71219086a6ecb21610c0d2c2d883108?arch=ppc64le&repository_url=registry.redhat.io/openshift-pipelines&tag=1774260980" } } } ], "category": "product_name", "name": "pipelines-triggers-core-interceptors-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774260987", "product": { "name": "vers:oci/1774260987", "product_id": "CSAFPID-5966202", "product_identification_helper": { "purl": "pkg:oci/pipelines-triggers-eventlistenersink-rhel9@sha256%3Acb3a3355cf811f942424c39dcdc6dce54b7fb8d716d6ab3f3ceced0c65ef2e20?arch=s390x&repository_url=registry.redhat.io/openshift-pipelines&tag=1774260987" } } } ], "category": "product_name", "name": "pipelines-triggers-eventlistenersink-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774260981", "product": { "name": "vers:oci/1774260981", "product_id": "CSAFPID-5966203", "product_identification_helper": { "purl": "pkg:oci/pipelines-triggers-webhook-rhel9@sha256%3Addfdbf73a1baa4c4f0bd59e341d0b4f635fae9a22da9d41a05dff6bca52030e6?arch=ppc64le&repository_url=registry.redhat.io/openshift-pipelines&tag=1774260981" } } } ], "category": "product_name", "name": "pipelines-triggers-webhook-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774556284", "product": { "name": "vers:oci/1774556284", "product_id": "CSAFPID-5966204", "product_identification_helper": { "purl": "pkg:oci/pipelines-webhook-rhel9@sha256%3Aedec38eb8faf0dce8cc0ae29702934250e6cd6f43c97f6babdc256d2916c93fa?arch=amd64&repository_url=registry.redhat.io/openshift-pipelines&tag=1774556284" } } } ], "category": "product_name", "name": "pipelines-webhook-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:oci/1774556263", "product": { "name": "vers:oci/1774556263", "product_id": "CSAFPID-5966205", "product_identification_helper": { "purl": "pkg:oci/pipelines-workingdirinit-rhel9@sha256%3Ae4c8a6c50518fe1541a557381ffd91483fbbc9976358d1fa23ff032355311213?arch=arm64&repository_url=registry.redhat.io/openshift-pipelines&tag=1774556263" } } } ], "category": "product_name", "name": "pipelines-workingdirinit-rhel9" } ], "category": "product_family", "name": "Red Hat OpenShift Pipelines" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/4", "product": { "name": "vers:rpm/4", "product_id": "CSAFPID-1441162", "product_identification_helper": { "cpe": "cpe:/a:redhat:container_native_virtualization:4" } } } ], "category": "product_name", "name": "Red Hat OpenShift Virtualization 4" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/1", "product": { "name": "vers:rpm/1", "product_id": "CSAFPID-1441204", "product_identification_helper": { "cpe": "cpe:/a:redhat:trusted_artifact_signer:1" } } } ], "category": "product_name", "name": "Red Hat Trusted Artifact Signer" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-1441209" } } ], "category": "product_name", "name": "ec-rhel9" } ], "category": "product_family", "name": "Red Hat Trusted Artifact Signer" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-5597158" } } ], "category": "product_name", "name": "kn-client-kn-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-5207394" } } ], "category": "product_name", "name": "kn-plugin-func-func-util-rhel9" } ], "category": "product_family", "name": "OpenShift Serverless" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-1496399" } } ], "category": "product_name", "name": "kubevirt-ssp-operator-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-1496400" } } ], "category": "product_name", "name": "kubevirt-tekton-tasks-create-datavolume-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-1496401" } } ], "category": "product_name", "name": "kubevirt-tekton-tasks-disk-virt-customize-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-1496403" } } ], "category": "product_name", "name": "kubevirt-template-validator-rhel9" } ], "category": "product_family", "name": "Red Hat OpenShift Virtualization 4" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-1455889" } } ], "category": "product_name", "name": "odh-ml-pipelines-api-server-v2-rhel8" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-1455890" } } ], "category": "product_name", "name": "odh-ml-pipelines-driver-rhel8" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-1455891" } } ], "category": "product_name", "name": "odh-ml-pipelines-launcher-rhel8" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-1455892" } } ], "category": "product_name", "name": "odh-ml-pipelines-persistenceagent-v2-rhel8" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-1455893" } } ], "category": "product_name", "name": "odh-ml-pipelines-scheduledworkflow-v2-rhel8" } ], "category": "product_family", "name": "Red Hat OpenShift AI (RHOAI)" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-1441042" } } ], "category": "product_name", "name": "openshift-builds-controller-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-1441044" } } ], "category": "product_name", "name": "openshift-builds-git-cloner-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-1441046" } } ], "category": "product_name", "name": "openshift-builds-image-bundler-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-1441048" } } ], "category": "product_name", "name": "openshift-builds-image-processing-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-2733627" } } ], "category": "product_name", "name": "openshift-builds-rhel9-operator" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-1441050" } } ], "category": "product_name", "name": "openshift-builds-waiters-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-1441052" } } ], "category": "product_name", "name": "openshift-builds-webhook-rhel9" } ], "category": "product_family", "name": "Builds for Red Hat OpenShift" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-2909323" } } ], "category": "product_name", "name": "pipelines-chains-controller-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-2909324" } } ], "category": "product_name", "name": "pipelines-cli-tkn-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-5474716" } } ], "category": "product_name", "name": "pipelines-controller-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-5878909" } } ], "category": "product_name", "name": "pipelines-entrypoint-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-5878910" } } ], "category": "product_name", "name": "pipelines-events-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-5878911" } } ], "category": "product_name", "name": "pipelines-git-init-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-2847213" } } ], "category": "product_name", "name": "pipelines-hub-api-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-5878912" } } ], "category": "product_name", "name": "pipelines-manual-approval-gate-controller-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-5878913" } } ], "category": "product_name", "name": "pipelines-manual-approval-gate-webhook-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-5878914" } } ], "category": "product_name", "name": "pipelines-nop-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-5068069" } } ], "category": "product_name", "name": "pipelines-opc-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-2909328" } } ], "category": "product_name", "name": "pipelines-operator-proxy-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-2909329" } } ], "category": "product_name", "name": "pipelines-operator-webhook-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-5310202" } } ], "category": "product_name", "name": "pipelines-pipelines-as-code-cli-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-5310203" } } ], "category": "product_name", "name": "pipelines-pipelines-as-code-controller-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-5310204" } } ], "category": "product_name", "name": "pipelines-pipelines-as-code-watcher-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-5878915" } } ], "category": "product_name", "name": "pipelines-pruner-controller-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-5762217" } } ], "category": "product_name", "name": "pipelines-resolvers-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-5878916" } } ], "category": "product_name", "name": "pipelines-results-api-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-5762218" } } ], "category": "product_name", "name": "pipelines-results-watcher-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-2909331" } } ], "category": "product_name", "name": "pipelines-rhel9-operator" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-5762219" } } ], "category": "product_name", "name": "pipelines-sidecarlogresults-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-5878917" } } ], "category": "product_name", "name": "pipelines-triggers-controller-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-5878918" } } ], "category": "product_name", "name": "pipelines-triggers-core-interceptors-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-5878919" } } ], "category": "product_name", "name": "pipelines-triggers-eventlistenersink-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-5878920" } } ], "category": "product_name", "name": "pipelines-triggers-webhook-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-5878921" } } ], "category": "product_name", "name": "pipelines-webhook-rhel9" }, { "branches": [ { "category": "product_version_range", "name": "vers:rpm/unknown", "product": { "name": "vers:rpm/unknown", "product_id": "CSAFPID-5878922" } } ], "category": "product_name", "name": "pipelines-workingdirinit-rhel9" } ], "category": "product_family", "name": "OpenShift Pipelines" } ], "category": "vendor", "name": "Red Hat" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/>=1.0.0|<1.0.1", "product": { "name": "vers:unknown/>=1.0.0|<1.0.1", "product_id": "CSAFPID-5902094" } }, { "category": "product_version_range", "name": "vers:unknown/>=1.1.0|<1.3.3", "product": { "name": "vers:unknown/>=1.1.0|<1.3.3", "product_id": "CSAFPID-5874544" } }, { "category": "product_version_range", "name": "vers:unknown/>=1.10.0|<1.10.2", "product": { "name": "vers:unknown/>=1.10.0|<1.10.2", "product_id": "CSAFPID-5874547" } }, { "category": "product_version_range", "name": "vers:unknown/>=1.4.0|<1.6.1", "product": { "name": "vers:unknown/>=1.4.0|<1.6.1", "product_id": "CSAFPID-5874545" } }, { "category": "product_version_range", "name": "vers:unknown/>=1.7.0|<1.9.2", "product": { "name": "vers:unknown/>=1.7.0|<1.9.2", "product_id": "CSAFPID-5874546" } } ], "category": "product_name", "name": "pipeline" } ], "category": "vendor", "name": "tektoncd" }, { "branches": [ { "branches": [ { "category": "product_version_range", "name": "vers:unknown/1.0.0", "product": { "name": "vers:unknown/1.0.0", "product_id": "CSAFPID-5918225", "product_identification_helper": { "cpe": "cpe:2.3:a:linuxfoundation:tekton_pipelines:1.0.0:*:*:*:*:go:*:*" } } }, { "category": "product_version_range", "name": "vers:unknown/>=1.1.0|<1.3.3", "product": { "name": "vers:unknown/>=1.1.0|<1.3.3", "product_id": "CSAFPID-5902479", "product_identification_helper": { "cpe": "cpe:2.3:a:linuxfoundation:tekton_pipelines:*:*:*:*:*:go:*:*" } } }, { "category": "product_version_range", "name": "vers:unknown/>=1.10.0|<1.10.2", "product": { "name": "vers:unknown/>=1.10.0|<1.10.2", "product_id": "CSAFPID-5902482", "product_identification_helper": { "cpe": "cpe:2.3:a:linuxfoundation:tekton_pipelines:*:*:*:*:*:go:*:*" } } }, { "category": "product_version_range", "name": "vers:unknown/>=1.4.0|<1.6.1", "product": { "name": "vers:unknown/>=1.4.0|<1.6.1", "product_id": "CSAFPID-5902480", "product_identification_helper": { "cpe": "cpe:2.3:a:linuxfoundation:tekton_pipelines:*:*:*:*:*:go:*:*" } } }, { "category": "product_version_range", "name": "vers:unknown/>=1.7.0|<1.9.2", "product": { "name": "vers:unknown/>=1.7.0|<1.9.2", "product_id": "CSAFPID-5902481", "product_identification_helper": { "cpe": "cpe:2.3:a:linuxfoundation:tekton_pipelines:*:*:*:*:*:go:*:*" } } } ], "category": "product_name", "name": "tekton_pipelines" } ], "category": "vendor", "name": "Linux Foundation" } ] }, "vulnerabilities": [ { "cve": "CVE-2026-33211", "cwe": { "id": "CWE-22", "name": "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')" }, "flags": [ { "label": "vulnerable_code_not_present", "product_ids": [ "CSAFPID-5966170", "CSAFPID-5966171", "CSAFPID-5966172", "CSAFPID-5966173", "CSAFPID-5966174", "CSAFPID-5966175", "CSAFPID-5966176", "CSAFPID-5966177", "CSAFPID-5966178", "CSAFPID-5966179", "CSAFPID-5966180", "CSAFPID-5966181", "CSAFPID-5966182", "CSAFPID-5966183", "CSAFPID-5966184", "CSAFPID-5966185", "CSAFPID-5966186", "CSAFPID-5966187", "CSAFPID-5966188", "CSAFPID-5966189", "CSAFPID-5966190", "CSAFPID-5966191", "CSAFPID-5966192", "CSAFPID-5966194", "CSAFPID-5966195", "CSAFPID-5966196", "CSAFPID-5966197", "CSAFPID-5966198", "CSAFPID-5966199", "CSAFPID-5966200", "CSAFPID-5966201", "CSAFPID-5966202", "CSAFPID-5966203", "CSAFPID-5966204", "CSAFPID-5966205" ] } ], "notes": [ { "category": "description", "text": "### Summary\n\nThe Tekton Pipelines git resolver is vulnerable to path traversal via the `pathInRepo` parameter. A tenant with permission to create `ResolutionRequests` (e.g. by creating `TaskRuns` or `PipelineRuns` that use the git resolver) can read arbitrary files from the resolver pod's filesystem, including ServiceAccount tokens. The file contents are returned base64-encoded in `resolutionrequest.status.data`.\n\n### Details\n\nThe git resolver's `getFileContent()` function in `pkg/resolution/resolver/git/repository.go` constructs a file path by joining the repository clone directory with the user-supplied `pathInRepo` parameter:\n\n```go\nfileContents, err := os.ReadFile(filepath.Join(repo.directory, path))\n```\n\nThe `pathInRepo` parameter is not validated for path traversal sequences. An attacker can supply values like `../../../../etc/passwd` to escape the cloned repository directory and read arbitrary files from the resolver pod's filesystem.\n\nThe vulnerability was introduced in commit `318006c4e3a5` which switched the git resolver from the go-git library (using an in-memory filesystem that cannot be escaped) to shelling out to the `git` binary and reading files with `os.ReadFile()` from the real filesystem.\n\n### Impact\n\n**Arbitrary file read** — A namespace-scoped tenant who can create `TaskRuns` or `PipelineRuns` with git resolver parameters can read any file readable by the resolver pod process.\n\n**Credential exfiltration and privilege escalation** — The resolver pod's ServiceAccount token is readable at a well-known path (`/var/run/secrets/kubernetes.io/serviceaccount/token`). In the default RBAC configuration, the `tekton-pipelines-resolvers` ServiceAccount has `get`, `list`, and `watch` permissions on `secrets` cluster-wide. An attacker who exfiltrates this token gains the ability to read all Secrets across all namespaces, escalating from namespace-scoped access to cluster-wide secret access.\n\n### Patches\n\nFixed in 1.0.x, 1.3.x, 1.6.x, 1.9.x, 1.10.x.\n\nThe fix validates `pathInRepo` to reject paths containing `..` components at parameter validation time, and adds a containment check using `filepath.EvalSymlinks()` to prevent symlink-based escapes from attacker-controlled repositories.\n\n### Workarounds\n\nThere is no workaround other than restricting which users can create `TaskRuns`, `PipelineRuns`, or `ResolutionRequests` that use the git resolver. Administrators can also reduce the impact by scoping the resolver pod's ServiceAccount RBAC permissions using a custom `ClusterRole` with more restrictive rules.\n\n### Affected Versions\n\nAll releases from **v1.0.0** through **v1.10.0**, including all patch releases:\n\n- v1.0.0, v1.1.0, v1.2.0\n- v1.3.0, v1.3.1, v1.3.2\n- v1.4.0, v1.5.0, v1.6.0, v1.7.0\n- v1.9.0, v1.9.1, v1.10.0\n\nReleases prior to v1.0.0 (e.g. v0.70.0 and earlier) are **not affected** because they used the go-git library's in-memory filesystem where path traversal cannot escape the git worktree.\n\n### Acknowledgments\n\nThis vulnerability was reported by Oleh Konko (@1seal), who provided a thorough vulnerability analysis, proof-of-concept, and review of the fix. Thank you!\n\n### References\n\n- Fix: _(link to merged PR/commit)_\n- Introduced in: `318006c4e3a5` (\"fix: resolve Git Anonymous Resolver excessive memory usage\")", "title": "github - https://github.com/advisories/GHSA-j5q5-j9gm-2w5c" }, { "category": "description", "text": "### Summary\n\nThe Tekton Pipelines git resolver is vulnerable to path traversal via the `pathInRepo` parameter. A tenant with permission to create `ResolutionRequests` (e.g. by creating `TaskRuns` or `PipelineRuns` that use the git resolver) can read arbitrary files from the resolver pod's filesystem, including ServiceAccount tokens. The file contents are returned base64-encoded in `resolutionrequest.status.data`.\n\n### Details\n\nThe git resolver's `getFileContent()` function in `pkg/resolution/resolver/git/repository.go` constructs a file path by joining the repository clone directory with the user-supplied `pathInRepo` parameter:\n\n```go\nfileContents, err := os.ReadFile(filepath.Join(repo.directory, path))\n```\n\nThe `pathInRepo` parameter is not validated for path traversal sequences. An attacker can supply values like `../../../../etc/passwd` to escape the cloned repository directory and read arbitrary files from the resolver pod's filesystem.\n\nThe vulnerability was introduced in commit `318006c4e3a5` which switched the git resolver from the go-git library (using an in-memory filesystem that cannot be escaped) to shelling out to the `git` binary and reading files with `os.ReadFile()` from the real filesystem.\n\n### Impact\n\n**Arbitrary file read** — A namespace-scoped tenant who can create `TaskRuns` or `PipelineRuns` with git resolver parameters can read any file readable by the resolver pod process.\n\n**Credential exfiltration and privilege escalation** — The resolver pod's ServiceAccount token is readable at a well-known path (`/var/run/secrets/kubernetes.io/serviceaccount/token`). In the default RBAC configuration, the `tekton-pipelines-resolvers` ServiceAccount has `get`, `list`, and `watch` permissions on `secrets` cluster-wide. An attacker who exfiltrates this token gains the ability to read all Secrets across all namespaces, escalating from namespace-scoped access to cluster-wide secret access.\n\n### Patches\n\nFixed in 1.0.x, 1.3.x, 1.6.x, 1.9.x, 1.10.x.\n\nThe fix validates `pathInRepo` to reject paths containing `..` components at parameter validation time, and adds a containment check using `filepath.EvalSymlinks()` to prevent symlink-based escapes from attacker-controlled repositories.\n\n### Workarounds\n\nThere is no workaround other than restricting which users can create `TaskRuns`, `PipelineRuns`, or `ResolutionRequests` that use the git resolver. Administrators can also reduce the impact by scoping the resolver pod's ServiceAccount RBAC permissions using a custom `ClusterRole` with more restrictive rules.\n\n### Affected Versions\n\nAll releases from **v1.0.0** through **v1.10.0**, including all patch releases:\n\n- v1.0.0, v1.1.0, v1.2.0\n- v1.3.0, v1.3.1, v1.3.2\n- v1.4.0, v1.5.0, v1.6.0, v1.7.0\n- v1.9.0, v1.9.1, v1.10.0\n\nReleases prior to v1.0.0 (e.g. v0.70.0 and earlier) are **not affected** because they used the go-git library's in-memory filesystem where path traversal cannot escape the git worktree.\n\n### Acknowledgments\n\nThis vulnerability was reported by Oleh Konko (@1seal), who provided a thorough vulnerability analysis, proof-of-concept, and review of the fix. Thank you!\n\n### References\n\n- Fix: _(link to merged PR/commit)_\n- Introduced in: `318006c4e3a5` (\"fix: resolve Git Anonymous Resolver excessive memory usage\")", "title": "github - https://api.github.com/advisories/GHSA-j5q5-j9gm-2w5c" }, { "category": "description", "text": "Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. Starting in version 1.0.0 and prior to versions 1.0.1, 1.3.3, 1.6.1, 1.9.2, and 1.10.2, the Tekton Pipelines git resolver is vulnerable to path traversal via the `pathInRepo` parameter. A tenant with permission to create `ResolutionRequests` (e.g. by creating `TaskRuns` or `PipelineRuns` that use the git resolver) can read arbitrary files from the resolver pod's filesystem, including ServiceAccount tokens. The file contents are returned base64-encoded in `resolutionrequest.status.data`. Versions 1.0.1, 1.3.3, 1.6.1, 1.9.2, and 1.10.2 contain a patch.", "title": "cveprojectv5 - https://raw.githubusercontent.com/CVEProject/cvelistV5/main/cves/2026/33xxx/CVE-2026-33211.json" }, { "category": "description", "text": "Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. Starting in version 1.0.0 and prior to versions 1.0.1, 1.3.3, 1.6.1, 1.9.2, and 1.10.2, the Tekton Pipelines git resolver is vulnerable to path traversal via the `pathInRepo` parameter. A tenant with permission to create `ResolutionRequests` (e.g. by creating `TaskRuns` or `PipelineRuns` that use the git resolver) can read arbitrary files from the resolver pod's filesystem, including ServiceAccount tokens. The file contents are returned base64-encoded in `resolutionrequest.status.data`. Versions 1.0.1, 1.3.3, 1.6.1, 1.9.2, and 1.10.2 contain a patch.", "title": "nvd - https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2026-33211" }, { "category": "description", "text": "A flaw was found in Tekton Pipelines, specifically in the Tekton Pipelines git resolver. A tenant with permissions to create ResolutionRequests can exploit a path traversal vulnerability via the `pathInRepo` parameter. This allows the tenant to read arbitrary files from the resolver pod's filesystem, leading to information disclosure, including sensitive ServiceAccount tokens. The contents of these files are returned in a base64-encoded format.", "title": "redhat - https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33211.json" }, { "category": "description", "text": "Path traversal in Tekton Pipelines git resolver allows reading arbitrary files from the resolver pod in github.com/tektoncd/pipeline", "title": "osv - https://www.googleapis.com/download/storage/v1/b/osv-vulnerabilities/o/Go%2FGO-2026-4761.json?alt=media" }, { "category": "description", "text": "### Summary\n\nThe Tekton Pipelines git resolver is vulnerable to path traversal via the `pathInRepo` parameter. A tenant with permission to create `ResolutionRequests` (e.g. by creating `TaskRuns` or `PipelineRuns` that use the git resolver) can read arbitrary files from the resolver pod's filesystem, including ServiceAccount tokens. The file contents are returned base64-encoded in `resolutionrequest.status.data`.\n\n### Details\n\nThe git resolver's `getFileContent()` function in `pkg/resolution/resolver/git/repository.go` constructs a file path by joining the repository clone directory with the user-supplied `pathInRepo` parameter:\n\n```go\nfileContents, err := os.ReadFile(filepath.Join(repo.directory, path))\n```\n\nThe `pathInRepo` parameter is not validated for path traversal sequences. An attacker can supply values like `../../../../etc/passwd` to escape the cloned repository directory and read arbitrary files from the resolver pod's filesystem.\n\nThe vulnerability was introduced in commit `318006c4e3a5` which switched the git resolver from the go-git library (using an in-memory filesystem that cannot be escaped) to shelling out to the `git` binary and reading files with `os.ReadFile()` from the real filesystem.\n\n### Impact\n\n**Arbitrary file read** — A namespace-scoped tenant who can create `TaskRuns` or `PipelineRuns` with git resolver parameters can read any file readable by the resolver pod process.\n\n**Credential exfiltration and privilege escalation** — The resolver pod's ServiceAccount token is readable at a well-known path (`/var/run/secrets/kubernetes.io/serviceaccount/token`). In the default RBAC configuration, the `tekton-pipelines-resolvers` ServiceAccount has `get`, `list`, and `watch` permissions on `secrets` cluster-wide. An attacker who exfiltrates this token gains the ability to read all Secrets across all namespaces, escalating from namespace-scoped access to cluster-wide secret access.\n\n### Patches\n\nFixed in 1.0.x, 1.3.x, 1.6.x, 1.9.x, 1.10.x.\n\nThe fix validates `pathInRepo` to reject paths containing `..` components at parameter validation time, and adds a containment check using `filepath.EvalSymlinks()` to prevent symlink-based escapes from attacker-controlled repositories.\n\n### Workarounds\n\nThere is no workaround other than restricting which users can create `TaskRuns`, `PipelineRuns`, or `ResolutionRequests` that use the git resolver. Administrators can also reduce the impact by scoping the resolver pod's ServiceAccount RBAC permissions using a custom `ClusterRole` with more restrictive rules.\n\n### Affected Versions\n\nAll releases from **v1.0.0** through **v1.10.0**, including all patch releases:\n\n- v1.0.0, v1.1.0, v1.2.0\n- v1.3.0, v1.3.1, v1.3.2\n- v1.4.0, v1.5.0, v1.6.0, v1.7.0\n- v1.9.0, v1.9.1, v1.10.0\n\nReleases prior to v1.0.0 (e.g. v0.70.0 and earlier) are **not affected** because they used the go-git library's in-memory filesystem where path traversal cannot escape the git worktree.\n\n### Acknowledgments\n\nThis vulnerability was reported by Oleh Konko (@1seal), who provided a thorough vulnerability analysis, proof-of-concept, and review of the fix. Thank you!\n\n### References\n\n- Fix: _(link to merged PR/commit)_\n- Introduced in: `318006c4e3a5` (\"fix: resolve Git Anonymous Resolver excessive memory usage\")", "title": "osv - https://www.googleapis.com/download/storage/v1/b/osv-vulnerabilities/o/Go%2FGHSA-j5q5-j9gm-2w5c.json?alt=media" }, { "category": "description", "text": "A flaw was found in Tekton Pipelines, specifically in the Tekton Pipelines git resolver. A tenant with permissions to create ResolutionRequests can exploit a path traversal vulnerability via the `pathInRepo` parameter. This allows the tenant to read arbitrary files from the resolver pod's filesystem, leading to information disclosure, including sensitive ServiceAccount tokens. The contents of these files are returned in a base64-encoded format.", "title": "redhat - https://access.redhat.com/hydra/rest/securitydata/csaf/RHSA-2026:6166.json" }, { "category": "description", "text": "A flaw was found in Tekton Pipelines, specifically in the Tekton Pipelines git resolver. A tenant with permissions to create ResolutionRequests can exploit a path traversal vulnerability via the `pathInRepo` parameter. This allows the tenant to read arbitrary files from the resolver pod's filesystem, leading to information disclosure, including sensitive ServiceAccount tokens. The contents of these files are returned in a base64-encoded format.", "title": "redhat - https://access.redhat.com/hydra/rest/securitydata/csaf/RHSA-2026:6170.json" }, { "category": "other", "text": "0.00023", "title": "EPSS" }, { "category": "other", "text": "4.2", "title": "NCSC Score" }, { "category": "other", "text": "VENDOR FIX as product remediation category", "title": "NCSC Score top increasing factors" }, { "category": "other", "text": "There is product_remediation data available from source Redhat, Is related to a product by vendor Red Hat", "title": "NCSC Score top decreasing factors" }, { "category": "details", "text": "Severity: 2\n", "title": "Vendor assessment" } ], "product_status": { "fixed": [ "CSAFPID-5966193", "CSAFPID-5966217" ], "known_affected": [ "CSAFPID-5874544", "CSAFPID-5874545", "CSAFPID-5874546", "CSAFPID-5874547", "CSAFPID-5902094", "CSAFPID-1439279", "CSAFPID-1441040", "CSAFPID-1441042", "CSAFPID-1441044", "CSAFPID-1441046", "CSAFPID-1441048", "CSAFPID-1441050", "CSAFPID-1441052", "CSAFPID-1441076", "CSAFPID-1441162", "CSAFPID-1441204", "CSAFPID-1441209", "CSAFPID-1455889", "CSAFPID-1455890", "CSAFPID-1455891", "CSAFPID-1455892", "CSAFPID-1455893", "CSAFPID-1496399", "CSAFPID-1496400", "CSAFPID-1496401", "CSAFPID-1496403", "CSAFPID-1919971", "CSAFPID-2733627", "CSAFPID-2847213", "CSAFPID-2909323", "CSAFPID-2909324", "CSAFPID-2909328", "CSAFPID-2909329", "CSAFPID-2909331", "CSAFPID-5068069", "CSAFPID-5207394", "CSAFPID-5310202", "CSAFPID-5310203", "CSAFPID-5310204", "CSAFPID-5474716", "CSAFPID-5597158", "CSAFPID-5762217", "CSAFPID-5762218", "CSAFPID-5762219", "CSAFPID-5878909", "CSAFPID-5878910", "CSAFPID-5878911", "CSAFPID-5878912", "CSAFPID-5878913", "CSAFPID-5878914", "CSAFPID-5878915", "CSAFPID-5878916", "CSAFPID-5878917", "CSAFPID-5878918", "CSAFPID-5878919", "CSAFPID-5878920", "CSAFPID-5878921", "CSAFPID-5878922", "CSAFPID-5902479", "CSAFPID-5902480", "CSAFPID-5902481", "CSAFPID-5902482", "CSAFPID-5918225" ], "known_not_affected": [ "CSAFPID-5966170", "CSAFPID-5966171", "CSAFPID-5966172", "CSAFPID-5966173", "CSAFPID-5966174", "CSAFPID-5966175", "CSAFPID-5966176", "CSAFPID-5966177", "CSAFPID-5966178", "CSAFPID-5966179", "CSAFPID-5966180", "CSAFPID-5966181", "CSAFPID-5966182", "CSAFPID-5966183", "CSAFPID-5966184", "CSAFPID-5966185", "CSAFPID-5966186", "CSAFPID-5966187", "CSAFPID-5966188", "CSAFPID-5966189", "CSAFPID-5966190", "CSAFPID-5966191", "CSAFPID-5966192", "CSAFPID-5966194", "CSAFPID-5966195", "CSAFPID-5966196", "CSAFPID-5966197", "CSAFPID-5966198", "CSAFPID-5966199", "CSAFPID-5966200", "CSAFPID-5966201", "CSAFPID-5966202", "CSAFPID-5966203", "CSAFPID-5966204", "CSAFPID-5966205" ] }, "references": [ { "category": "external", "summary": "Source - github", "url": "https://github.com/advisories/GHSA-j5q5-j9gm-2w5c" }, { "category": "external", "summary": "Source raw - github", "url": "https://api.github.com/advisories/GHSA-j5q5-j9gm-2w5c" }, { "category": "external", "summary": "Source - github", "url": "https://api.github.com/advisories/GHSA-j5q5-j9gm-2w5c" }, { "category": "external", "summary": "Source - cveprojectv5", "url": "https://raw.githubusercontent.com/CVEProject/cvelistV5/main/cves/2026/33xxx/CVE-2026-33211.json" }, { "category": "external", "summary": "Source - nvd", "url": "https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2026-33211" }, { "category": "external", "summary": "Source - first", "url": "https://api.first.org/data/v1/epss?limit=10000&offset=0" }, { "category": "external", "summary": "Source - redhat", "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33211.json" }, { "category": "external", "summary": "Source - osv", "url": "https://www.googleapis.com/download/storage/v1/b/osv-vulnerabilities/o/Go%2FGO-2026-4761.json?alt=media" }, { "category": "external", "summary": "Source - osv", "url": "https://www.googleapis.com/download/storage/v1/b/osv-vulnerabilities/o/Go%2FGHSA-j5q5-j9gm-2w5c.json?alt=media" }, { "category": "external", "summary": "Source - redhat", "url": "https://access.redhat.com/hydra/rest/securitydata/csaf/RHSA-2026:6166.json" }, { "category": "external", "summary": "Source - redhat", "url": "https://access.redhat.com/hydra/rest/securitydata/csaf/RHSA-2026:6170.json" }, { "category": "external", "summary": "Reference - cveprojectv5; github; nvd; osv; redhat", "url": "https://github.com/tektoncd/pipeline/security/advisories/GHSA-j5q5-j9gm-2w5c" }, { "category": "external", "summary": "Reference - github", "url": "https://github.com/advisories/GHSA-j5q5-j9gm-2w5c" }, { "category": "external", "summary": "Reference - cveprojectv5; github; nvd; osv; redhat", "url": "https://github.com/tektoncd/pipeline/commit/10fa538f9a2b6d01c75138f1ed7ba3da0e34687c" }, { "category": "external", "summary": "Reference - cveprojectv5; github; nvd; osv; redhat", "url": "https://github.com/tektoncd/pipeline/commit/318006c4e3a5" }, { "category": "external", "summary": "Reference - cveprojectv5; github; nvd; osv; redhat", "url": "https://github.com/tektoncd/pipeline/commit/3ca7bc6e6dd1d97f80b84f78370d91edaf023cbd" }, { "category": "external", "summary": "Reference - cveprojectv5; github; nvd; osv; redhat", "url": "https://github.com/tektoncd/pipeline/commit/961388fcf3374bc7656d28ab58ca84987e0a75ae" }, { "category": "external", "summary": "Reference - cveprojectv5; github; nvd; osv; redhat", "url": "https://github.com/tektoncd/pipeline/commit/b1fee65b88aa969069c14c120045e97c37d9ee5e" }, { "category": "external", "summary": "Reference - cveprojectv5; github; nvd; osv; redhat", "url": "https://github.com/tektoncd/pipeline/commit/cdb4e1e97a4f3170f9bc2cbfff83a6c8107bc3db" }, { "category": "external", "summary": "Reference - cveprojectv5; github; nvd; osv; redhat", "url": "https://github.com/tektoncd/pipeline/commit/ec7755031a183b345cf9e64bea0e0505c1b9cb78" }, { "category": "external", "summary": "Reference - redhat", "url": "https://www.cve.org/CVERecord?id=CVE-2026-33211" }, { "category": "external", "summary": "Reference - github; osv; redhat", "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33211" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/cve/CVE-2026-33211" }, { "category": "external", "summary": "Reference - redhat", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2450554" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/errata/RHSA-2026:6166" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/cve/CVE-2025-66506" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/cve/CVE-2026-33022" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/updates/classification/" }, { "category": "external", "summary": "Reference - redhat", "url": "https://docs.redhat.com/en/documentation/red_hat_openshift_pipelines" }, { "category": "external", "summary": "Reference - redhat", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_6166.json" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/errata/RHSA-2026:6170" }, { "category": "external", "summary": "Reference - redhat", "url": "https://access.redhat.com/security/cve/CVE-2026-25639" }, { "category": "external", "summary": "Reference - redhat", "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_6170.json" } ], "remediations": [ { "category": "mitigation", "details": "To mitigate this vulnerability, restrict the creation of ResolutionRequests to trusted users and service accounts. Implement strict Role-Based Access Control (RBAC) policies to limit which tenants can create TaskRuns or PipelineRuns that utilize the Tekton Pipelines git resolver. This reduces the exposure by preventing unauthorized access to the resolver pod's filesystem.", "product_ids": [ "CSAFPID-1439279", "CSAFPID-1441040", "CSAFPID-1441042", "CSAFPID-1441044", "CSAFPID-1441046", "CSAFPID-1441048", "CSAFPID-1441050", "CSAFPID-1441052", "CSAFPID-1441076", "CSAFPID-1441162", "CSAFPID-1441204", "CSAFPID-1441209", "CSAFPID-1455889", "CSAFPID-1455890", "CSAFPID-1455891", "CSAFPID-1455892", "CSAFPID-1455893", "CSAFPID-1496399", "CSAFPID-1496400", "CSAFPID-1496401", "CSAFPID-1496403", "CSAFPID-1919971", "CSAFPID-2733627", "CSAFPID-2847213", "CSAFPID-2909323", "CSAFPID-2909324", "CSAFPID-2909328", "CSAFPID-2909329", "CSAFPID-2909331", "CSAFPID-5068069", "CSAFPID-5207394", "CSAFPID-5310202", "CSAFPID-5310203", "CSAFPID-5310204", "CSAFPID-5474716", "CSAFPID-5597158", "CSAFPID-5762217", "CSAFPID-5762218", "CSAFPID-5762219", "CSAFPID-5878909", "CSAFPID-5878910", "CSAFPID-5878911", "CSAFPID-5878912", "CSAFPID-5878913", "CSAFPID-5878914", "CSAFPID-5878915", "CSAFPID-5878916", "CSAFPID-5878917", "CSAFPID-5878918", "CSAFPID-5878919", "CSAFPID-5878920", "CSAFPID-5878921", "CSAFPID-5878922" ] }, { "category": "vendor_fix", "details": "Red Hat OpenShift Pipelines is a cloud-native, continuous integration and\ncontinuous delivery (CI/CD) solution based on Kubernetes resources.\nIt uses Tekton building blocks to automate deployments across multiple\nplatforms by abstracting away the underlying implementation details.\nTekton introduces a number of standard custom resource definitions (CRDs)\nfor defining CI/CD pipelines that are portable across Kubernetes distributions.", "product_ids": [ "CSAFPID-5966169", "CSAFPID-5966193" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2026:6166" }, { "category": "workaround", "details": "To mitigate this vulnerability, restrict the creation of ResolutionRequests to trusted users and service accounts. Implement strict Role-Based Access Control (RBAC) policies to limit which tenants can create TaskRuns or PipelineRuns that utilize the Tekton Pipelines git resolver. This reduces the exposure by preventing unauthorized access to the resolver pod's filesystem.", "product_ids": [ "CSAFPID-5966169", "CSAFPID-5966170", "CSAFPID-5966171", "CSAFPID-5966172", "CSAFPID-5966173", "CSAFPID-5966174", "CSAFPID-5966175", "CSAFPID-5966176", "CSAFPID-5966177", "CSAFPID-5966178", "CSAFPID-5966179", "CSAFPID-5966180", "CSAFPID-5966181", "CSAFPID-5966182", "CSAFPID-5966183", "CSAFPID-5966184", "CSAFPID-5966185", "CSAFPID-5966186", "CSAFPID-5966187", "CSAFPID-5966188", "CSAFPID-5966189", "CSAFPID-5966190", "CSAFPID-5966191", "CSAFPID-5966192", "CSAFPID-5966193", "CSAFPID-5966194", "CSAFPID-5966195", "CSAFPID-5966196", "CSAFPID-5966197", "CSAFPID-5966198", "CSAFPID-5966199", "CSAFPID-5966200", "CSAFPID-5966201", "CSAFPID-5966202", "CSAFPID-5966203", "CSAFPID-5966204", "CSAFPID-5966205", "CSAFPID-5966217" ] }, { "category": "vendor_fix", "details": "Red Hat OpenShift Pipelines is a cloud-native, continuous integration and\ncontinuous delivery (CI/CD) solution based on Kubernetes resources.\nIt uses Tekton building blocks to automate deployments across multiple\nplatforms by abstracting away the underlying implementation details.\nTekton introduces a number of standard custom resource definitions (CRDs)\nfor defining CI/CD pipelines that are portable across Kubernetes distributions.", "product_ids": [ "CSAFPID-5966169", "CSAFPID-5966217" ], "restart_required": { "category": "none" }, "url": "https://access.redhat.com/errata/RHSA-2026:6170" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N", "baseScore": 9.6, "baseSeverity": "CRITICAL" }, "products": [ "CSAFPID-1439279", "CSAFPID-1441040", "CSAFPID-1441042", "CSAFPID-1441044", "CSAFPID-1441046", "CSAFPID-1441048", "CSAFPID-1441050", "CSAFPID-1441052", "CSAFPID-1441076", "CSAFPID-1441162", "CSAFPID-1441204", "CSAFPID-1441209", "CSAFPID-1455889", "CSAFPID-1455890", "CSAFPID-1455891", "CSAFPID-1455892", "CSAFPID-1455893", "CSAFPID-1496399", "CSAFPID-1496400", "CSAFPID-1496401", "CSAFPID-1496403", "CSAFPID-1919971", "CSAFPID-2733627", "CSAFPID-2847213", "CSAFPID-2909323", "CSAFPID-2909324", "CSAFPID-2909328", "CSAFPID-2909329", "CSAFPID-2909331", "CSAFPID-5068069", "CSAFPID-5207394", "CSAFPID-5310202", "CSAFPID-5310203", "CSAFPID-5310204", "CSAFPID-5474716", "CSAFPID-5597158", "CSAFPID-5762217", "CSAFPID-5762218", "CSAFPID-5762219", "CSAFPID-5874544", "CSAFPID-5874545", "CSAFPID-5874546", "CSAFPID-5874547", "CSAFPID-5878909", "CSAFPID-5878910", "CSAFPID-5878911", "CSAFPID-5878912", "CSAFPID-5878913", "CSAFPID-5878914", "CSAFPID-5878915", "CSAFPID-5878916", "CSAFPID-5878917", "CSAFPID-5878918", "CSAFPID-5878919", "CSAFPID-5878920", "CSAFPID-5878921", "CSAFPID-5878922", "CSAFPID-5902094", "CSAFPID-5902479", "CSAFPID-5902480", "CSAFPID-5902481", "CSAFPID-5902482", "CSAFPID-5918225" ] } ], "title": "CVE-2026-33211" } ] }