The cert-manager Operator for Red Hat OpenShift 1.18.1 introduces certificate authorities and certificates as Kubernetes API resources, enabling certificate management within clusters. Multiple vulnerabilities (CVE-2025-61727, CVE-2025-61729, CVE-2025-66418, CVE-2025-66471, CVE-2026-21441) affect this operator, involving weaknesses categorized under CWEs such as CWE-295 (Improper Certificate Validation), CWE-1050, CWE-770, and CWE-409. The Red Hat security advisory RHSA-2026:0990 addresses these issues by providing updated operator images. The upgrade process depends on the installation's approval policy: automatic upgrades occur by default, while manual approval is required if configured. No detailed technical exploit information or patch specifics are provided in the advisory.

The vulnerabilities affect the cert-manager Operator for Red Hat OpenShift, potentially impacting the security of certificate management within Kubernetes clusters. The high severity rating indicates significant risk if exploited, possibly undermining certificate validation or management processes. However, there are no known exploits in the wild currently. The impact is limited to environments running the affected operator versions.

Red Hat recommends upgrading to the latest cert-manager Operator version 1.18.1. If the cluster's upgrade policy is set to 'Automatic' (the default), the operator will upgrade automatically without user intervention. For clusters with a 'Manual' approval policy, administrators must manually approve the upgrade. Prior to upgrading, ensure all previously released relevant errata are applied. Refer to Red Hat's official documentation for detailed upgrade instructions: https://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html. No other specific mitigations or workarounds are provided.