gRPC-Go has an authorization bypass via missing leading slash in :path

Summary

CVECVE-2026-33186
StatePUBLISHED
AssignerGitHub_M
Source PriorityCVE Program / NVD first with legacy fallback
Published2026-03-20 23:16:45 UTC
Updated2026-07-10 12:16:39 UTC
DescriptiongRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omitted the mandatory leading slash (e.g., `Service/Method` instead of `/Service/Method`). While the server successfully routed these requests to the correct handler, authorization interceptors (including the official `grpc/authz` package) evaluated the raw, non-canonical path string. Consequently, "deny" rules defined using canonical paths (starting with `/`) failed to match the incoming request, allowing it to bypass the policy if a fallback "allow" rule was present. This affects gRPC-Go servers that use path-based authorization interceptors, such as the official RBAC implementation in `google.golang.org/grpc/authz` or custom interceptors relying on `info.FullMethod` or `grpc.Method(ctx)`; AND that have a security policy contains specific "deny" rules for canonical paths but allows other requests by default (a fallback "allow" rule). The vulnerability is exploitable by an attacker who can send raw HTTP/2 frames with malformed `:path` headers directly to the gRPC server. The fix in version 1.79.3 ensures that any request with a `:path` that does not start with a leading slash is immediately rejected with a `codes.Unimplemented` error, preventing it from reaching authorization interceptors or handlers with a non-canonical path string. While upgrading is the most secure and recommended path, users can mitigate the vulnerability using one of the following methods: Use a validating interceptor (recommended mitigation); infrastructure-level normalization; and/or policy hardening.

Risk And Classification

Primary CVSS: v3.1 9.1 CRITICAL from ADP

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

EPSS: 0.015570000 probability, percentile 0.722970000 (date 2026-07-13)

Problem Types: CWE-285 | CWE-551 | CWE-285 CWE-285: Improper Authorization | CWE-551 Incorrect Behavior Order: Authorization Before Parsing and Canonicalization


VersionSourceTypeScoreSeverityVector
3.1ADPCVSS9.1CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
3.1[email protected]Secondary9.1CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
3.10b0ca135-0b70-47e7-9f44-1890c2a1c46cSecondary9.1CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
3.1CNADECLARED9.1CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

CVSS v3.1 Breakdown

Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
None

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

NVD Known Affected Configurations (CPE 2.3)

TypeVendorProductVersionUpdateEditionLanguage
Application Grpc Grpc All All All All

Vendor Declared Affected Products

SourceVendorProductVersionPlatforms
CNA Grpc Grpc-go affected < 1.79.3 Not specified
ADP Red Hat Red Hat OpenShift Container Platform 4.16 Not specified Not specified
ADP Red Hat Red Hat OpenShift Container Platform 4.17 Not specified Not specified
ADP Red Hat Red Hat OpenShift Container Platform 4.18 Not specified Not specified
ADP Red Hat Red Hat Satellite 6.16 For RHEL 8 Not specified Not specified
ADP Red Hat Cryostat 4 On RHEL 9 Not specified Not specified
ADP Red Hat RHEM 1.0 For RHEL 9 Not specified Not specified
ADP Red Hat Red Hat OpenStack Platform 17.1 Not specified Not specified
ADP Red Hat Red Hat OpenShift Container Platform 4.19 Not specified Not specified
ADP Red Hat Red Hat Satellite 6.16 For RHEL 9 Not specified Not specified
ADP Red Hat Red Hat Enterprise Linux AppStream EUS V. 10.0 Not specified Not specified
ADP Red Hat Red Hat Enterprise Linux AppStream V. 10 Not specified Not specified
ADP Red Hat Red Hat Enterprise Linux AppStream V. 8 Not specified Not specified
ADP Red Hat Red Hat Enterprise Linux AppStream EUS V.9.4 Not specified Not specified
ADP Red Hat Red Hat Enterprise Linux AppStream EUS V.9.6 Not specified Not specified
ADP Red Hat Red Hat Enterprise Linux AppStream V. 9 Not specified Not specified
ADP Red Hat Red Hat CodeReady Linux Builder EUS V.9.6 Not specified Not specified
ADP Red Hat Red Hat Enterprise Linux CodeReady Linux Builder V. 9 Not specified Not specified
ADP Red Hat DevWorkspace Operator 0.4 Not specified Not specified
ADP Red Hat Logging Subsystem For Red Hat OpenShift 6.4 Not specified Not specified
ADP Red Hat Multicluster Global Hub 1.3.4 Not specified Not specified
ADP Red Hat Multicluster Global Hub 1.4.5 Not specified Not specified
ADP Red Hat Multicluster Global Hub 1.5.4 Not specified Not specified
ADP Red Hat Multicluster Global Hub 1.6.2 Not specified Not specified
ADP Red Hat Network Observability NETOBSERV 1.11.2 Not specified Not specified
ADP Red Hat OpenShift API For Data Protection 1.4 Not specified Not specified
ADP Red Hat OpenShift API For Data Protection 1.5 Not specified Not specified
ADP Red Hat OpenShift Compliance Operator 1 Not specified Not specified
ADP Red Hat Red Hat Advanced Cluster Management For Kubernetes 2.13 Not specified Not specified
ADP Red Hat Red Hat Advanced Cluster Management For Kubernetes 2.14 Not specified Not specified
ADP Red Hat Red Hat Advanced Cluster Management For Kubernetes 2.15 Not specified Not specified
ADP Red Hat Red Hat Advanced Cluster Management For Kubernetes 2.16 Not specified Not specified
ADP Red Hat Red Hat Advanced Cluster Security For Kubernetes 4.10 Not specified Not specified
ADP Red Hat Red Hat Advanced Cluster Security For Kubernetes 4.8 Not specified Not specified
ADP Red Hat Red Hat Advanced Cluster Security For Kubernetes 4.9 Not specified Not specified
ADP Red Hat Red Hat Container Native Virtualization 4.18 Not specified Not specified
ADP Red Hat Red Hat Container Native Virtualization 4.19 Not specified Not specified
ADP Red Hat Red Hat Container Native Virtualization 4.20 Not specified Not specified
ADP Red Hat Red Hat Container Native Virtualization 4.21 Not specified Not specified
ADP Red Hat Red Hat Developer Hub 1.8 Not specified Not specified
ADP Red Hat Red Hat Developer Hub 1.9 Not specified Not specified
ADP Red Hat Red Hat Edge Manager 1.0 Not specified Not specified
ADP Red Hat Red Hat Lightspeed Formerly Insights For Runtimes 1 Not specified Not specified
ADP Red Hat Red Hat OpenShift AI 2.25 Not specified Not specified
ADP Red Hat Red Hat OpenShift AI 3.3 Not specified Not specified
ADP Red Hat Red Hat OpenShift Builds 1.6.5 Not specified Not specified
ADP Red Hat Red Hat OpenShift Builds 1.7.4 Not specified Not specified
ADP Red Hat Red Hat OpenShift Container Platform 4.12 Not specified Not specified
ADP Red Hat Red Hat OpenShift Container Platform 4.13 Not specified Not specified
ADP Red Hat Red Hat OpenShift Container Platform 4.14 Not specified Not specified
ADP Red Hat Red Hat OpenShift Container Platform 4.15 Not specified Not specified
ADP Red Hat Red Hat OpenShift Container Platform 4.20 Not specified Not specified
ADP Red Hat Red Hat OpenShift Container Platform 4.21 Not specified Not specified
ADP Red Hat Red Hat OpenShift Container Platform 4.22 Not specified Not specified
ADP Red Hat Red Hat OpenShift Dev Spaces 3.27 Not specified Not specified
ADP Red Hat Red Hat OpenShift GitOps 1.18 Not specified Not specified
ADP Red Hat Red Hat OpenShift GitOps 1.19 Not specified Not specified
ADP Red Hat Red Hat OpenShift Pipelines 1.21 Not specified Not specified
ADP Red Hat Red Hat OpenShift Pipelines 1.2 Not specified Not specified
ADP Red Hat Red Hat OpenShift Service Mesh 2.6 Not specified Not specified
ADP Red Hat Red Hat OpenShift Service Mesh 3.1 Not specified Not specified
ADP Red Hat Red Hat OpenShift Service Mesh 3.2 Not specified Not specified
ADP Red Hat Red Hat OpenShift Service Mesh 3.3 Not specified Not specified
ADP Red Hat Red Hat OpenShift Service Mesh 3 Not specified Not specified
ADP Red Hat Red Hat OpenShift Distributed Tracing 3.9.3 Not specified Not specified
ADP Red Hat Red Hat Openshift Data Foundation 4.16 Not specified Not specified
ADP Red Hat Red Hat Openshift Data Foundation 4.18 Not specified Not specified
ADP Red Hat Red Hat Openshift Data Foundation 4.19 Not specified Not specified
ADP Red Hat Red Hat Openshift Data Foundation 4.2 Not specified Not specified
ADP Red Hat Red Hat Quay 3.10 Not specified Not specified
ADP Red Hat Red Hat Quay 3.12 Not specified Not specified
ADP Red Hat Red Hat Quay 3.14 Not specified Not specified
ADP Red Hat Red Hat Quay 3.15 Not specified Not specified
ADP Red Hat Red Hat Quay 3.16 Not specified Not specified
ADP Red Hat Red Hat Quay 3.17 Not specified Not specified
ADP Red Hat Red Hat Quay 3.9 Not specified Not specified
ADP Red Hat Red Hat Trusted Artifact Signer 1.3 Not specified Not specified
ADP Red Hat Red Hat Web Terminal 1.13 Not specified Not specified
ADP Red Hat Red Hat Web Terminal 1.14 Not specified Not specified
ADP Red Hat Red Hat Web Terminal 1.15 Not specified Not specified
ADP Red Hat Multicluster Engine For Kubernetes 2.10 Not specified Not specified
ADP Red Hat Multicluster Engine For Kubernetes 2.11 Not specified Not specified
ADP Red Hat Multicluster Engine For Kubernetes 2.6 Not specified Not specified
ADP Red Hat Multicluster Engine For Kubernetes 2.8 Not specified Not specified
ADP Red Hat Multicluster Engine For Kubernetes 2.9 Not specified Not specified
ADP Red Hat Assisted Installer For Red Hat OpenShift Container Platform 2 Not specified Not specified
ADP Red Hat Cert-manager Operator For Red Hat OpenShift Not specified Not specified
ADP Red Hat Cryostat 4 Not specified Not specified
ADP Red Hat Deployment Validation Operator Not specified Not specified
ADP Red Hat Dynamic Accelerator Slicer Operator For Red Hat OpenShift Not specified Not specified
ADP Red Hat ExternalDNS Operator Not specified Not specified
ADP Red Hat File Integrity Operator Not specified Not specified
ADP Red Hat Gatekeeper 3 Not specified Not specified
ADP Red Hat Job Set Tech Preview Not specified Not specified
ADP Red Hat Kernel Module Management Operator For Red Hat Openshift Not specified Not specified
ADP Red Hat Kube Descheduler Operator Not specified Not specified
ADP Red Hat Leader Worker Set Not specified Not specified
ADP Red Hat Logging Subsystem For Red Hat OpenShift Not specified Not specified
ADP Red Hat Logical Volume Manager Storage Not specified Not specified
ADP Red Hat Migration Toolkit For Containers Not specified Not specified
ADP Red Hat Migration Toolkit For Virtualization Not specified Not specified
ADP Red Hat Multicluster Engine For Kubernetes Not specified Not specified
ADP Red Hat Multicluster Global Hub Not specified Not specified
ADP Red Hat OpenShift API For Data Protection Not specified Not specified
ADP Red Hat OpenShift Developer Tools And Services Not specified Not specified
ADP Red Hat OpenShift Lightspeed Not specified Not specified
ADP Red Hat OpenShift Pipelines Not specified Not specified
ADP Red Hat OpenShift Run Once Duration Override Operator Not specified Not specified
ADP Red Hat OpenShift Secondary Scheduler Operator Not specified Not specified
ADP Red Hat OpenShift Serverless Not specified Not specified
ADP Red Hat OpenShift Service Mesh 2 Not specified Not specified
ADP Red Hat Red Hat Advanced Cluster Management For Kubernetes 2 Not specified Not specified
ADP Red Hat Red Hat AI Inference Server Not specified Not specified
ADP Red Hat Red Hat Ansible Automation Platform 2 Not specified Not specified
ADP Red Hat Red Hat Build Of Podman Desktop Not specified Not specified
ADP Red Hat Red Hat Build Of Podman Desktop - Tech Preview Not specified Not specified
ADP Red Hat Red Hat Certification Program For Red Hat Enterprise Linux 9 Not specified Not specified
ADP Red Hat Red Hat Connectivity Link 1 Not specified Not specified
ADP Red Hat Red Hat Enterprise Linux 10 Not specified Not specified
ADP Red Hat Red Hat Enterprise Linux 7 Not specified Not specified
ADP Red Hat Red Hat Enterprise Linux 8 Not specified Not specified
ADP Red Hat Red Hat Enterprise Linux 9 Not specified Not specified
ADP Red Hat Red Hat Enterprise Linux AI RHEL AI 3 Not specified Not specified
ADP Red Hat Red Hat OpenShift AI RHOAI Not specified Not specified
ADP Red Hat Red Hat OpenShift Cluster Manager CLI Not specified Not specified
ADP Red Hat Red Hat OpenShift Container Platform 4 Not specified Not specified
ADP Red Hat Red Hat Openshift Data Foundation 4 Not specified Not specified
ADP Red Hat Red Hat OpenShift GitOps Not specified Not specified
ADP Red Hat Red Hat OpenShift Virtualization 4 Not specified Not specified
ADP Red Hat Red Hat OpenStack Platform 16.2 Not specified Not specified
ADP Red Hat Red Hat Quay 3 Not specified Not specified
ADP Red Hat Red Hat Satellite 6 Not specified Not specified
ADP Red Hat Red Hat Trusted Artifact Signer Not specified Not specified
ADP Red Hat Security Profiles Operator Not specified Not specified
ADP Red Hat Self Node Remediation Operator Not specified Not specified
ADP Red Hat Storage-Based Remediation Not specified Not specified
ADP Red Hat Zero Trust Workload Identity Manager - Tech Preview Not specified Not specified
ADP Red Hat Builds For Red Hat OpenShift Not specified Not specified
ADP Red Hat Confidential Compute Attestation Not specified Not specified
ADP Red Hat Custom Metric Autoscaler Operator For Red Hat Openshift Not specified Not specified
ADP Red Hat External Secrets Operator For Red Hat OpenShift Not specified Not specified
ADP Red Hat Machine Deletion Remediation Operator Not specified Not specified
ADP Red Hat Migration Toolkit For Applications 8 Not specified Not specified
ADP Red Hat OpenShift Service Mesh 3 Not specified Not specified
ADP Red Hat Power Monitoring For Red Hat OpenShift Not specified Not specified
ADP Red Hat Red Hat 3scale API Management Platform 2 Not specified Not specified
ADP Red Hat Red Hat Build Of Kueue Not specified Not specified
ADP Red Hat Red Hat OpenShift Dev Workspaces Operator Not specified Not specified
ADP Red Hat Red Hat OpenShift For Windows Containers Not specified Not specified
ADP Red Hat Red Hat OpenStack Platform 18.0 Not specified Not specified
ADP Red Hat Red Hat Service Interconnect 1 Not specified Not specified
ADP Red Hat Red Hat Trusted Profile Analyzer Not specified Not specified
ADP Red Hat Service Telemetry Framework 1.5 Not specified Not specified
ADP Red Hat Zero Trust Workload Identity Manager Not specified Not specified

References

ReferenceSourceLinkTags
access.redhat.com/errata/RHSA-2026:23234 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:12279 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:34100 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:8491 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:20436 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:8493 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:24506 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:22800 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:12118 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:27893 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:19719 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:10125 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:34794 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:25183 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:17474 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:10705 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:28047 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:8433 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:21696 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:20041 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:9385 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:10093 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:24484 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:19108 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:26568 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:24853 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:15092 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:25045 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:21703 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:36651 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:12283 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:20034 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:29854 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:25194 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:11856 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:21709 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:21657 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:21932 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:23241 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:26999 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:10155 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:21658 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:24977 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:34049 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:36882 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:10130 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:34769 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:10698 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:26412 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:29079 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:27957 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:21704 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:6802 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:20088 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:21017 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:6564 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:12337 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:27901 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:21769 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:25127 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
bugzilla.redhat.com/show_bug.cgi 0b0ca135-0b70-47e7-9f44-1890c2a1c46c bugzilla.redhat.com
access.redhat.com/errata/RHSA-2026:18068 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:8484 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:34097 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:23246 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:10158 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:24535 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:19720 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:17448 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:6174 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:24759 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:17599 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:34364 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:18585 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:37275 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:20322 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:13791 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-33186.json 0b0ca135-0b70-47e7-9f44-1890c2a1c46c security.access.redhat.com
access.redhat.com/errata/RHSA-2026:22959 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:21691 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:22450 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:25009 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:10094 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:20943 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:11408 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:11803 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:19375 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:8338 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:20946 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:23247 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:21931 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3 [email protected] github.com Mitigation, Vendor Advisory
access.redhat.com/errata/RHSA-2026:20089 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:10153 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:23345 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:34099 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:14775 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:10105 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:10131 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:9440 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:9448 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:26416 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/security/cve/CVE-2026-33186 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:26413 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:11070 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:10175 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:10706 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:13829 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:20042 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:22465 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:8449 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:19353 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:27001 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:27004 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:7245 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:11916 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:19135 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:17598 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:13548 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:8483 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:7110 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:27712 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:11996 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:7128 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:29082 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:22347 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:22689 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:27063 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:19721 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:19207 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:6428 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:10126 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:9453 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:19109 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:9872 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:28964 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:22961 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:8151 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:21697 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:10172 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:22485 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:21692 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:25187 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:34795 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:27892 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:36796 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:12119 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:12277 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:17475 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:24536 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:25201 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:25182 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:22937 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:12116 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:23235 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:19712 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:21710 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:17123 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:28893 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:8490 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:26997 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:17789 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:22714 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:19099 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:25195 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:27076 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:23228 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:27856 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:17459 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:26519 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:9388 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:10107 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:26420 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:22423 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:17468 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:20035 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
access.redhat.com/errata/RHSA-2026:22645 0b0ca135-0b70-47e7-9f44-1890c2a1c46c access.redhat.com
CVE Program record CVE.ORG www.cve.org canonical
NVD vulnerability detail NVD nvd.nist.gov canonical, analysis

Additional Advisory Data

SourceTimeEvent
ADP2026-03-20T23:02:27.802ZReported to Red Hat.
ADP2026-03-20T22:23:32.147ZMade public.

Solutions

ADP: RHSA-2026:29079: Red Hat OpenShift Container Platform 4.16

ADP: RHSA-2026:34097: Red Hat OpenShift Container Platform 4.17

ADP: RHSA-2026:26997: Red Hat OpenShift Container Platform 4.18

ADP: RHSA-2026:27076: Red Hat Satellite 6.16 for RHEL 8, Red Hat Satellite 6.16 for RHEL 9

ADP: RHSA-2026:17789: Cryostat 4 on RHEL 9

ADP: RHSA-2026:36796: RHEM 1.0 for RHEL 9

ADP: RHSA-2026:28047: Red Hat OpenStack Platform 17.1

ADP: RHSA-2026:20436: Red Hat OpenShift Container Platform 4.16

ADP: RHSA-2026:18068: Red Hat OpenShift Container Platform 4.18

ADP: RHSA-2026:20322: Red Hat OpenShift Container Platform 4.19

ADP: RHSA-2026:26999: Red Hat OpenShift Container Platform 4.19

ADP: RHSA-2026:19719: Red Hat Enterprise Linux AppStream EUS (v. 10.0)

ADP: RHSA-2026:27856: Red Hat Enterprise Linux AppStream EUS (v. 10.0)

ADP: RHSA-2026:22937: Red Hat Enterprise Linux AppStream (v. 10)

ADP: RHSA-2026:19135: Red Hat Enterprise Linux AppStream (v. 10)

ADP: RHSA-2026:22450: Red Hat Enterprise Linux AppStream (v. 10)

ADP: RHSA-2026:10107: Red Hat Enterprise Linux AppStream (v. 8)

ADP: RHSA-2026:19721: Red Hat Enterprise Linux AppStream EUS (v.9.4)

ADP: RHSA-2026:19720: Red Hat Enterprise Linux AppStream EUS (v.9.6)

ADP: RHSA-2026:27712: Red Hat Enterprise Linux AppStream EUS (v.9.6)

ADP: RHSA-2026:10705: Red Hat CodeReady Linux Builder EUS (v.9.6), Red Hat Enterprise Linux AppStream EUS (v.9.6)

ADP: RHSA-2026:10706: Red Hat Enterprise Linux AppStream (v. 9), Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)

ADP: RHSA-2026:23228: Red Hat Enterprise Linux AppStream (v. 9)

ADP: RHSA-2026:19353: Red Hat Enterprise Linux AppStream (v. 9)

ADP: RHSA-2026:22714: Red Hat Enterprise Linux AppStream (v. 9)

ADP: RHSA-2026:19207: Red Hat Enterprise Linux AppStream (v. 9), Red Hat Enterprise Linux CodeReady Linux Builder (v. 9)

ADP: RHSA-2026:9872: DevWorkspace Operator 0.4

ADP: RHSA-2026:34364: Logging Subsystem for Red Hat OpenShift 6.4

ADP: RHSA-2026:22423: Multicluster Global Hub 1.3.4

ADP: RHSA-2026:22347: Multicluster Global Hub 1.4.5

ADP: RHSA-2026:21769: Multicluster Global Hub 1.5.4

ADP: RHSA-2026:23345: Multicluster Global Hub 1.6.2

ADP: RHSA-2026:6428: Network Observability (NETOBSERV) 1.11.2

ADP: RHSA-2026:29854: OpenShift API for Data Protection 1.4

ADP: RHSA-2026:26568: OpenShift API for Data Protection 1.5

ADP: RHSA-2026:8433: OpenShift Compliance Operator 1

ADP: RHSA-2026:22645: Red Hat Advanced Cluster Management for Kubernetes 2.13

ADP: RHSA-2026:36882: Red Hat Advanced Cluster Management for Kubernetes 2.14

ADP: RHSA-2026:25127: Red Hat Advanced Cluster Management for Kubernetes 2.14

ADP: RHSA-2026:13548: Red Hat Advanced Cluster Management for Kubernetes 2.15

ADP: RHSA-2026:8151: Red Hat Advanced Cluster Management for Kubernetes 2.15

ADP: RHSA-2026:11408: Red Hat Advanced Cluster Management for Kubernetes 2.15

ADP: RHSA-2026:11803: Red Hat Advanced Cluster Management for Kubernetes 2.16

ADP: RHSA-2026:13829: Red Hat Advanced Cluster Security for Kubernetes 4.10

ADP: RHSA-2026:7110: Red Hat Advanced Cluster Security for Kubernetes 4.8

ADP: RHSA-2026:11070: Red Hat Advanced Cluster Security for Kubernetes 4.8

ADP: RHSA-2026:7128: Red Hat Advanced Cluster Security for Kubernetes 4.9

ADP: RHSA-2026:13791: Red Hat Advanced Cluster Security for Kubernetes 4.9

ADP: RHSA-2026:27893: Red Hat Container Native Virtualization 4.18

ADP: RHSA-2026:27901: Red Hat Container Native Virtualization 4.19

ADP: RHSA-2026:27957: Red Hat Container Native Virtualization 4.20

ADP: RHSA-2026:27892: Red Hat Container Native Virtualization 4.21

ADP: RHSA-2026:6174: Red Hat Developer Hub 1.8

ADP: RHSA-2026:6802: Red Hat Developer Hub 1.9

ADP: RHSA-2026:36651: Red Hat Edge Manager 1.0

ADP: RHSA-2026:22485: Red Hat Lightspeed (formerly Insights) for Runtimes 1

ADP: RHSA-2026:24977: Red Hat OpenShift AI 2.25

ADP: RHSA-2026:10698: Red Hat OpenShift AI 2.25

ADP: RHSA-2026:37275: Red Hat OpenShift AI 3.3

ADP: RHSA-2026:19712: Red Hat OpenShift AI 3.3

ADP: RHSA-2026:10155: Red Hat OpenShift Builds 1.6.5

ADP: RHSA-2026:10158: Red Hat OpenShift Builds 1.7.4

ADP: RHSA-2026:21696: Red Hat OpenShift Container Platform 4.12

ADP: RHSA-2026:34049: Red Hat OpenShift Container Platform 4.12

ADP: RHSA-2026:21697: Red Hat OpenShift Container Platform 4.12

ADP: RHSA-2026:12283: Red Hat OpenShift Container Platform 4.12

ADP: RHSA-2026:21691: Red Hat OpenShift Container Platform 4.13

ADP: RHSA-2026:21692: Red Hat OpenShift Container Platform 4.13

ADP: RHSA-2026:28893: Red Hat OpenShift Container Platform 4.14

ADP: RHSA-2026:25009: Red Hat OpenShift Container Platform 4.14

ADP: RHSA-2026:15092: Red Hat OpenShift Container Platform 4.14

ADP: RHSA-2026:23234: Red Hat OpenShift Container Platform 4.15

ADP: RHSA-2026:28964: Red Hat OpenShift Container Platform 4.15

ADP: RHSA-2026:23235: Red Hat OpenShift Container Platform 4.15

ADP: RHSA-2026:14775: Red Hat OpenShift Container Platform 4.15

ADP: RHSA-2026:25045: Red Hat OpenShift Container Platform 4.16

ADP: RHSA-2026:29082: Red Hat OpenShift Container Platform 4.16

ADP: RHSA-2026:20088: Red Hat OpenShift Container Platform 4.16

ADP: RHSA-2026:20089: Red Hat OpenShift Container Platform 4.16

ADP: RHSA-2026:10105: Red Hat OpenShift Container Platform 4.16

ADP: RHSA-2026:34099: Red Hat OpenShift Container Platform 4.17

ADP: RHSA-2026:17598: Red Hat OpenShift Container Platform 4.17

ADP: RHSA-2026:34100: Red Hat OpenShift Container Platform 4.17

ADP: RHSA-2026:17599: Red Hat OpenShift Container Platform 4.17

ADP: RHSA-2026:21657: Red Hat OpenShift Container Platform 4.18

ADP: RHSA-2026:25182: Red Hat OpenShift Container Platform 4.18

ADP: RHSA-2026:21658: Red Hat OpenShift Container Platform 4.18

ADP: RHSA-2026:27001: Red Hat OpenShift Container Platform 4.18

ADP: RHSA-2026:17448: Red Hat OpenShift Container Platform 4.18

ADP: RHSA-2026:25183: Red Hat OpenShift Container Platform 4.18

ADP: RHSA-2026:12119: Red Hat OpenShift Container Platform 4.18

ADP: RHSA-2026:12118: Red Hat OpenShift Container Platform 4.18

ADP: RHSA-2026:8449: Red Hat OpenShift Container Platform 4.18

ADP: RHSA-2026:23246: Red Hat OpenShift Container Platform 4.19

ADP: RHSA-2026:20041: Red Hat OpenShift Container Platform 4.19

ADP: RHSA-2026:20042: Red Hat OpenShift Container Platform 4.19

ADP: RHSA-2026:27004: Red Hat OpenShift Container Platform 4.19

ADP: RHSA-2026:23247: Red Hat OpenShift Container Platform 4.19

ADP: RHSA-2026:25201: Red Hat OpenShift Container Platform 4.19

ADP: RHSA-2026:10093: Red Hat OpenShift Container Platform 4.19

ADP: RHSA-2026:10094: Red Hat OpenShift Container Platform 4.19

ADP: RHSA-2026:21703: Red Hat OpenShift Container Platform 4.20

ADP: RHSA-2026:27063: Red Hat OpenShift Container Platform 4.20

ADP: RHSA-2026:17468: Red Hat OpenShift Container Platform 4.20

ADP: RHSA-2026:24535: Red Hat OpenShift Container Platform 4.20

ADP: RHSA-2026:21704: Red Hat OpenShift Container Platform 4.20

ADP: RHSA-2026:25195: Red Hat OpenShift Container Platform 4.20

ADP: RHSA-2026:25194: Red Hat OpenShift Container Platform 4.20

ADP: RHSA-2026:6564: Red Hat OpenShift Container Platform 4.20

ADP: RHSA-2026:24759: Red Hat OpenShift Container Platform 4.20

ADP: RHSA-2026:17474: Red Hat OpenShift Container Platform 4.21

ADP: RHSA-2026:21709: Red Hat OpenShift Container Platform 4.21

ADP: RHSA-2026:24506: Red Hat OpenShift Container Platform 4.21

ADP: RHSA-2026:20034: Red Hat OpenShift Container Platform 4.21

ADP: RHSA-2026:20035: Red Hat OpenShift Container Platform 4.21

ADP: RHSA-2026:25187: Red Hat OpenShift Container Platform 4.21

ADP: RHSA-2026:7245: Red Hat OpenShift Container Platform 4.21

ADP: RHSA-2026:23241: Red Hat OpenShift Container Platform 4.21

ADP: RHSA-2026:17475: Red Hat OpenShift Container Platform 4.21

ADP: RHSA-2026:21710: Red Hat OpenShift Container Platform 4.21

ADP: RHSA-2026:34769: Red Hat OpenShift Container Platform 4.21

ADP: RHSA-2026:22800: Red Hat OpenShift Container Platform 4.21

ADP: RHSA-2026:34794: Red Hat OpenShift Container Platform 4.22

ADP: RHSA-2026:34795: Red Hat OpenShift Container Platform 4.22

ADP: RHSA-2026:10175: Red Hat OpenShift Dev Spaces 3.27

ADP: RHSA-2026:20946: Red Hat OpenShift GitOps 1.18

ADP: RHSA-2026:20943: Red Hat OpenShift GitOps 1.19

ADP: RHSA-2026:26519: Red Hat OpenShift Pipelines 1.21

ADP: RHSA-2026:24484: Red Hat OpenShift Pipelines 1.21

ADP: RHSA-2026:21932: Red Hat OpenShift Pipelines 1.2

ADP: RHSA-2026:21931: Red Hat OpenShift Pipelines 1.2

ADP: RHSA-2026:8483: Red Hat OpenShift Service Mesh 2.6

ADP: RHSA-2026:9448: Red Hat OpenShift Service Mesh 3.1

ADP: RHSA-2026:8490: Red Hat OpenShift Service Mesh 3.1

ADP: RHSA-2026:9453: Red Hat OpenShift Service Mesh 3.2

ADP: RHSA-2026:8491: Red Hat OpenShift Service Mesh 3.2

ADP: RHSA-2026:8493: Red Hat OpenShift Service Mesh 3.3

ADP: RHSA-2026:9440: Red Hat OpenShift Service Mesh 3

ADP: RHSA-2026:8484: Red Hat OpenShift Service Mesh 3

ADP: RHSA-2026:9388: Red Hat OpenShift distributed tracing 3.9.3

ADP: RHSA-2026:9385: Red Hat OpenShift distributed tracing 3.9.3

ADP: RHSA-2026:26416: Red Hat Openshift Data Foundation 4.16

ADP: RHSA-2026:26420: Red Hat Openshift Data Foundation 4.18

ADP: RHSA-2026:26413: Red Hat Openshift Data Foundation 4.19

ADP: RHSA-2026:12279: Red Hat Openshift Data Foundation 4.19

ADP: RHSA-2026:26412: Red Hat Openshift Data Foundation 4.2

ADP: RHSA-2026:12277: Red Hat Openshift Data Foundation 4.2

ADP: RHSA-2026:11916: Red Hat Quay 3.10

ADP: RHSA-2026:11856: Red Hat Quay 3.12

ADP: RHSA-2026:21017: Red Hat Quay 3.14

ADP: RHSA-2026:24853: Red Hat Quay 3.15

ADP: RHSA-2026:19375: Red Hat Quay 3.16

ADP: RHSA-2026:22465: Red Hat Quay 3.17

ADP: RHSA-2026:11996: Red Hat Quay 3.9

ADP: RHSA-2026:10131: Red Hat Trusted Artifact Signer 1.3

ADP: RHSA-2026:10125: Red Hat Trusted Artifact Signer 1.3

ADP: RHSA-2026:10130: Red Hat Trusted Artifact Signer 1.3

ADP: RHSA-2026:10126: Red Hat Trusted Artifact Signer 1.3

ADP: RHSA-2026:10172: Red Hat Trusted Artifact Signer 1.3

ADP: RHSA-2026:10153: Red Hat Trusted Artifact Signer 1.3

ADP: RHSA-2026:8338: Red Hat Web Terminal 1.13

ADP: RHSA-2026:22959: Red Hat Web Terminal 1.14

ADP: RHSA-2026:22961: Red Hat Web Terminal 1.15

ADP: RHSA-2026:24536: multicluster engine for Kubernetes 2.10

ADP: RHSA-2026:19099: multicluster engine for Kubernetes 2.10

ADP: RHSA-2026:12116: multicluster engine for Kubernetes 2.10

ADP: RHSA-2026:12337: multicluster engine for Kubernetes 2.11

ADP: RHSA-2026:19108: multicluster engine for Kubernetes 2.11

ADP: RHSA-2026:17459: multicluster engine for Kubernetes 2.6

ADP: RHSA-2026:17123: multicluster engine for Kubernetes 2.8

ADP: RHSA-2026:22689: multicluster engine for Kubernetes 2.8

ADP: RHSA-2026:18585: multicluster engine for Kubernetes 2.9

ADP: RHSA-2026:19109: multicluster engine for Kubernetes 2.9

Workarounds

ADP: To mitigate this issue, implement infrastructure-level normalization to ensure all incoming HTTP/2 `:path` headers are properly formatted with a leading slash before reaching the gRPC-Go server. This can be achieved by configuring a reverse proxy or API gateway to validate and normalize the `:path` header. Ensure that any such intermediary is properly configured and restarted to apply the changes, which may temporarily impact service availability.

© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report