Cyber Resilience

CVE-2026-1784

HighUpdated

Published: 02 June 2026

Published
02 June 2026
Modified
30 June 2026
KEV Added
Patch
CVSS Score v3.1 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
EPSS Score 0.0015 4.2th percentile
Risk Priority 55 floored blend · peak EPSS

Summary

CVE-2026-1784 is a high-severity External Control of System or Configuration Setting (CWE-15) vulnerability in Redhat Openshift Container Platform. Its CVSS base score is 8.8 (High).

Operationally, ranked at the 4.2th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

OWASP Top 10 for Web (2025)

EU & UK References

Vulnerability details

The Route OpenShift resource allows to define routes to make pods reachable at a subdomain through HAProxy. It was found that the checks performed on the spec.path YAML stanza in a Route document was insufficient and could allow a controlled…

more

injection of the HAProxy configuration.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

Insufficient information to map techniques.
Confidence: LOW · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2026-28368Same vendor: Redhat
CVE-2026-6855Same vendor: Redhat
CVE-2026-3047Same vendor: Redhat
CVE-2026-4636Same vendor: Redhat
CVE-2026-7307Same vendor: Redhat
CVE-2026-28369Same vendor: Redhat
CVE-2026-3121Same vendor: Redhat
CVE-2026-3009Same vendor: Redhat
CVE-2026-9795Same vendor: Redhat
CVE-2026-32589Same vendor: Redhat

Affected Assets

redhat
openshift container platform
4.0

Mitigating Controls

Likely Mitigating Controls AI

Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.

addresses: CWE-15

The policy and procedures establish internal controls and change management for system configuration settings, reducing the feasibility of external unauthorized modifications.

addresses: CWE-15

Baseline configuration under change control directly prevents unauthorized external modification of system or configuration settings.

addresses: CWE-15

Requires approval, documentation, and security impact review of all configuration changes, directly preventing unauthorized external control of system settings.

addresses: CWE-15

Impact analysis of configuration changes reduces the risk of deploying settings that permit unauthorized external control.

addresses: CWE-15

Restricting changes to system and configuration settings prevents external entities from controlling those settings without approval.

addresses: CWE-15

Establishing, implementing, approving deviations from, and monitoring configuration settings directly prevents external or unauthorized control of system settings.

addresses: CWE-15

The plan defines processes for identifying and managing configuration items, preventing external unauthorized control of system settings.

addresses: CWE-15

Vulnerability scanners directly detect externally controllable or misconfigured settings using standardized checklists.

References