CVE-2024-47875 is a high severity cross-site scripting (XSS) vulnerability in the dompurify component used by Logging for Red Hat OpenShift 5.8.16. The vulnerability involves nesting-based mutation XSS, which can allow injection of malicious scripts in affected logging components. Red Hat Product Security has published an advisory (RHSA-2025:0329) detailing this issue and providing upgrade instructions to remediate it. The affected product versions include Red Hat OpenShift Logging 5.8 for RHEL 9 across multiple CPU architectures. While no CVSS score is provided, the vulnerability is classified as high severity. There are no reports of exploitation in the wild. The advisory references official documentation for upgrading OpenShift Container Platform and the logging subsystem to apply the fix.

The vulnerability allows for cross-site scripting attacks via nesting-based mutation in the dompurify component, potentially enabling attackers to execute malicious scripts in the context of affected Red Hat OpenShift logging components. This could lead to unauthorized actions or data exposure within the logging subsystem. No known exploits have been reported in the wild, but the high severity rating indicates a significant risk if left unpatched.

Red Hat has provided upgrade instructions to apply the fix for this vulnerability. Users of Red Hat OpenShift Logging 5.8 should follow the official Red Hat documentation to upgrade their clusters and logging components accordingly: https://docs.openshift.com/container-platform/4.13/logging/cluster-logging-upgrading.html. Applying the update as per the advisory RHSA-2025:0329 will mitigate the vulnerability. Patch status is confirmed by the availability of upgrade instructions; therefore, remediation is available and should be applied promptly.