CVE-2026-1530

Description

A flaw was found in fog-kubevirt. This vulnerability allows a remote attacker to perform a Man-in-the-Middle (MITM) attack due to disabled certificate validation. This enables the attacker to intercept and potentially alter sensitive communications between Satellite and OpenShift, resulting in information disclosure and data integrity compromise.

Risk Information

Base Score

8.1

MODERATE

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

EPSS Score

Exploitation Probability

0.01

Associated Vulnerability

Vulnerability	OS Platform
Vulnerabilities CVE-2026-1530 are fixed in Ruby-fog-kubevirt 1.5.1	Windows
Vulnerabilities CVE-2026-1530 are fixed in Ruby-fog-kubevirt for Linux 1.5.1	Linux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234