Red Hat OpenShift: CVE-2022-2996: python-scciclient: missing server certificate verification
4
(AV:L/AC:M/Au:N/C:P/I:P/A:P)
09/01/2022
10/16/2023
10/16/2023
10/16/2023
Description
A flaw was found in the python-scciclient when making an HTTPS connection to a server where the server's certificate would not be verified. This issue opens up the connection to possible Man-in-the-middle (MITM) attacks.
Solution(s)
- linuxrpm-upgrade-crudini
- linuxrpm-upgrade-future
- linuxrpm-upgrade-openstack-ironic
- linuxrpm-upgrade-openstack-ironic-inspector
- linuxrpm-upgrade-openstack-ironic-python-agent
- linuxrpm-upgrade-openstack-macros
- linuxrpm-upgrade-pyflakes
- linuxrpm-upgrade-pyopenssl
- linuxrpm-upgrade-pysnmp
- linuxrpm-upgrade-python-alembic
- linuxrpm-upgrade-python-amqp
- linuxrpm-upgrade-python-apipkg
- linuxrpm-upgrade-python-atomicwrites
- linuxrpm-upgrade-python-automaton
- linuxrpm-upgrade-python-autopage
- linuxrpm-upgrade-python-bcrypt
- linuxrpm-upgrade-python-beautifulsoup4
- linuxrpm-upgrade-python-betamax
- linuxrpm-upgrade-python-cachetools
- linuxrpm-upgrade-python-case
- linuxrpm-upgrade-python-cinderclient
- linuxrpm-upgrade-python-click
- linuxrpm-upgrade-python-cliff
- linuxrpm-upgrade-python-cmd2
- linuxrpm-upgrade-python-colorama
- linuxrpm-upgrade-python-construct
- linuxrpm-upgrade-python-contextlib2
- linuxrpm-upgrade-python-coverage
- linuxrpm-upgrade-python-dataclasses
- linuxrpm-upgrade-python-ddt
- linuxrpm-upgrade-python-debtcollector
- linuxrpm-upgrade-python-decorator
- linuxrpm-upgrade-python-defusedxml
- linuxrpm-upgrade-python-distlib
- linuxrpm-upgrade-python-dogpile-cache
- linuxrpm-upgrade-python-dracclient
- linuxrpm-upgrade-python-editor
- linuxrpm-upgrade-python-entrypoints
- linuxrpm-upgrade-python-eventlet
- linuxrpm-upgrade-python-execnet
- linuxrpm-upgrade-python-extras
- linuxrpm-upgrade-python-fasteners
- linuxrpm-upgrade-python-filelock
- linuxrpm-upgrade-python-fixtures
- linuxrpm-upgrade-python-flake8
- linuxrpm-upgrade-python-flask
- linuxrpm-upgrade-python-flit
- linuxrpm-upgrade-python-freezegun
- linuxrpm-upgrade-python-funcsigs
- linuxrpm-upgrade-python-futurist
- linuxrpm-upgrade-python-gevent
- linuxrpm-upgrade-python-glanceclient
- linuxrpm-upgrade-python-greenlet
- linuxrpm-upgrade-python-gunicorn
- linuxrpm-upgrade-python-hacking
- linuxrpm-upgrade-python-hardware
- linuxrpm-upgrade-python-html5lib
- linuxrpm-upgrade-python-hypothesis
- linuxrpm-upgrade-python-ifaddr
- linuxrpm-upgrade-python-importlib-metadata
- linuxrpm-upgrade-python-ironic-lib
- linuxrpm-upgrade-python-ironic-prometheus-exporter
- linuxrpm-upgrade-python-ironicclient
- linuxrpm-upgrade-python-iso8601
- linuxrpm-upgrade-python-itsdangerous
- linuxrpm-upgrade-python-jinja2
- linuxrpm-upgrade-python-jsonpath-rw
- linuxrpm-upgrade-python-kafka
- linuxrpm-upgrade-python-kazoo
- linuxrpm-upgrade-python-kerberos
- linuxrpm-upgrade-python-keyring
- linuxrpm-upgrade-python-keystoneauth1
- linuxrpm-upgrade-python-keystoneclient
- linuxrpm-upgrade-python-keystonemiddleware
- linuxrpm-upgrade-python-kiwisolver
- linuxrpm-upgrade-python-kombu
- linuxrpm-upgrade-python-linecache2
- linuxrpm-upgrade-python-logutils
- linuxrpm-upgrade-python-markupsafe
- linuxrpm-upgrade-python-mccabe
- linuxrpm-upgrade-python-memcached
- linuxrpm-upgrade-python-migrate
- linuxrpm-upgrade-python-mimeparse
- linuxrpm-upgrade-python-mock
- linuxrpm-upgrade-python-monotonic
- linuxrpm-upgrade-python-more-itertools
- linuxrpm-upgrade-python-mox3
- linuxrpm-upgrade-python-msgpack
- linuxrpm-upgrade-python-munch
- linuxrpm-upgrade-python-neutronclient
- linuxrpm-upgrade-python-nose
- linuxrpm-upgrade-python-nose-cover3
- linuxrpm-upgrade-python-openstacksdk
- linuxrpm-upgrade-python-os-client-config
- linuxrpm-upgrade-python-os-service-types
- linuxrpm-upgrade-python-os-traits
- linuxrpm-upgrade-python-osc-lib
- linuxrpm-upgrade-python-oslo-cache
- linuxrpm-upgrade-python-oslo-concurrency
- linuxrpm-upgrade-python-oslo-config
- linuxrpm-upgrade-python-oslo-context
- linuxrpm-upgrade-python-oslo-db
- linuxrpm-upgrade-python-oslo-i18n
- linuxrpm-upgrade-python-oslo-log
- linuxrpm-upgrade-python-oslo-messaging
- linuxrpm-upgrade-python-oslo-metrics
- linuxrpm-upgrade-python-oslo-middleware
- linuxrpm-upgrade-python-oslo-policy
- linuxrpm-upgrade-python-oslo-reports
- linuxrpm-upgrade-python-oslo-rootwrap
- linuxrpm-upgrade-python-oslo-serialization
- linuxrpm-upgrade-python-oslo-service
- linuxrpm-upgrade-python-oslo-upgradecheck
- linuxrpm-upgrade-python-oslo-utils
- linuxrpm-upgrade-python-oslo-versionedobjects
- linuxrpm-upgrade-python-oslotest
- linuxrpm-upgrade-python-osprofiler
- linuxrpm-upgrade-python-paste
- linuxrpm-upgrade-python-paste-deploy
- linuxrpm-upgrade-python-pbr
- linuxrpm-upgrade-python-pecan
- linuxrpm-upgrade-python-pexpect
- linuxrpm-upgrade-python-pint
- linuxrpm-upgrade-python-pretend
- linuxrpm-upgrade-python-proliantutils
- linuxrpm-upgrade-python-prometheus_client
- linuxrpm-upgrade-python-pycadf
- linuxrpm-upgrade-python-pycodestyle
- linuxrpm-upgrade-python-pymemcache
- linuxrpm-upgrade-python-pyperclip
- linuxrpm-upgrade-python-pytest-cov
- linuxrpm-upgrade-python-pytest-forked
- linuxrpm-upgrade-python-pytest-runner
- linuxrpm-upgrade-python-pytest-xdist
- linuxrpm-upgrade-python-pytest-xprocess
- linuxrpm-upgrade-python-redis
- linuxrpm-upgrade-python-repoze-lru
- linuxrpm-upgrade-python-requests-kerberos
- linuxrpm-upgrade-python-requests-mock
- linuxrpm-upgrade-python-requests-unixsocket
- linuxrpm-upgrade-python-requestsexceptions
- linuxrpm-upgrade-python-retrying
- linuxrpm-upgrade-python-rfc3986
- linuxrpm-upgrade-python-routes
- linuxrpm-upgrade-python-scciclient
- linuxrpm-upgrade-python-secretstorage
- linuxrpm-upgrade-python-simplegeneric
- linuxrpm-upgrade-python-simplejson
- linuxrpm-upgrade-python-singledispatch
- linuxrpm-upgrade-python-smi
- linuxrpm-upgrade-python-sortedcontainers
- linuxrpm-upgrade-python-soupsieve
- linuxrpm-upgrade-python-sqlalchemy
- linuxrpm-upgrade-python-sqlparse
- linuxrpm-upgrade-python-statsd
- linuxrpm-upgrade-python-stestr
- linuxrpm-upgrade-python-stevedore
- linuxrpm-upgrade-python-sure
- linuxrpm-upgrade-python-sushy
- linuxrpm-upgrade-python-sushy-oem-idrac
- linuxrpm-upgrade-python-swiftclient
- linuxrpm-upgrade-python-tempita
- linuxrpm-upgrade-python-tenacity
- linuxrpm-upgrade-python-testrepository
- linuxrpm-upgrade-python-testresources
- linuxrpm-upgrade-python-testscenarios
- linuxrpm-upgrade-python-testtools
- linuxrpm-upgrade-python-tooz
- linuxrpm-upgrade-python-tornado
- linuxrpm-upgrade-python-tox
- linuxrpm-upgrade-python-tox-current-env
- linuxrpm-upgrade-python-traceback2
- linuxrpm-upgrade-python-typeguard
- linuxrpm-upgrade-python-typing-extensions
- linuxrpm-upgrade-python-unittest2
- linuxrpm-upgrade-python-vine
- linuxrpm-upgrade-python-virtualenv
- linuxrpm-upgrade-python-voluptuous
- linuxrpm-upgrade-python-waitress
- linuxrpm-upgrade-python-warlock
- linuxrpm-upgrade-python-wcwidth
- linuxrpm-upgrade-python-webencodings
- linuxrpm-upgrade-python-webob
- linuxrpm-upgrade-python-webtest
- linuxrpm-upgrade-python-werkzeug
- linuxrpm-upgrade-python-wrapt
- linuxrpm-upgrade-python-wsme
- linuxrpm-upgrade-python-yappi
- linuxrpm-upgrade-python-zake
- linuxrpm-upgrade-python-zeroconf
- linuxrpm-upgrade-python-zipp
- linuxrpm-upgrade-python-zope-event
- linuxrpm-upgrade-python-zope-interface
- linuxrpm-upgrade-python-zope-testing
- linuxrpm-upgrade-subunit
Advanced vulnerability management analytics and reporting.
Key Features
- Lightweight Endpoint Agent
- Live Dashboards
- Real Risk Prioritization
- IT-Integrated Remediation Projects
- Cloud, Virtual, and Container Assessment
- Integrated Threat Feeds
- Easy-to-Use RESTful API
- Automation-Assisted Patching
- Automated Containment
With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.
– Scott Cheney, Manager of Information Security, Sierra View Medical Center