Red Hat Security Advisory: OpenShift Container Platform 4.17.4 bug fix and security update
Red Hat OpenShift Container Platform 4. 17. 4 includes security updates addressing two vulnerabilities: a Server-Side Request Forgery (SSRF) issue in the axios library (CVE-2024-39338) and a nesting-based mutation Cross-Site Scripting (XSS) vulnerability in dompurify (CVE-2024-47875). These vulnerabilities affect on-premise or private cloud deployments of OpenShift Container Platform 4. 17. Users are advised to upgrade to the updated packages and container images provided in this release to mitigate these issues.
AI Analysis
Technical Summary
This advisory covers Red Hat OpenShift Container Platform 4.17.4, which provides bug fixes and security updates including patches for two vulnerabilities: CVE-2024-39338, a Server-Side Request Forgery vulnerability in the axios library, and CVE-2024-47875, a nesting-based mutation XSS vulnerability in dompurify. The update is rated as having an Important security impact by Red Hat Product Security. The advisory includes updated container images and references an RPM package advisory for full remediation. Users should upgrade their OpenShift 4.17 clusters using the official upgrade procedures to apply these fixes.
Potential Impact
The SSRF vulnerability (CVE-2024-39338) in axios could allow an attacker to induce the server to make unintended requests, potentially leading to unauthorized actions or information disclosure. The XSS vulnerability (CVE-2024-47875) in dompurify could allow injection of malicious scripts via nested mutations, potentially leading to client-side script execution in affected components. Both vulnerabilities are rated as Important by Red Hat, indicating a high security impact if exploited. There are no known exploits in the wild at this time.
Mitigation Recommendations
Red Hat has released OpenShift Container Platform 4.17.4 with updated container images and packages that address these vulnerabilities. Users of OpenShift Container Platform 4.17 are strongly advised to upgrade to this release using the OpenShift CLI or web console following the official upgrade documentation. The vendor manages remediation through these updated images and packages; no additional mitigations are specified beyond applying the update.
Red Hat Security Advisory: OpenShift Container Platform 4.17.4 bug fix and security update
Description
Red Hat OpenShift Container Platform 4. 17. 4 includes security updates addressing two vulnerabilities: a Server-Side Request Forgery (SSRF) issue in the axios library (CVE-2024-39338) and a nesting-based mutation Cross-Site Scripting (XSS) vulnerability in dompurify (CVE-2024-47875). These vulnerabilities affect on-premise or private cloud deployments of OpenShift Container Platform 4. 17. Users are advised to upgrade to the updated packages and container images provided in this release to mitigate these issues.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This advisory covers Red Hat OpenShift Container Platform 4.17.4, which provides bug fixes and security updates including patches for two vulnerabilities: CVE-2024-39338, a Server-Side Request Forgery vulnerability in the axios library, and CVE-2024-47875, a nesting-based mutation XSS vulnerability in dompurify. The update is rated as having an Important security impact by Red Hat Product Security. The advisory includes updated container images and references an RPM package advisory for full remediation. Users should upgrade their OpenShift 4.17 clusters using the official upgrade procedures to apply these fixes.
Potential Impact
The SSRF vulnerability (CVE-2024-39338) in axios could allow an attacker to induce the server to make unintended requests, potentially leading to unauthorized actions or information disclosure. The XSS vulnerability (CVE-2024-47875) in dompurify could allow injection of malicious scripts via nested mutations, potentially leading to client-side script execution in affected components. Both vulnerabilities are rated as Important by Red Hat, indicating a high security impact if exploited. There are no known exploits in the wild at this time.
Mitigation Recommendations
Red Hat has released OpenShift Container Platform 4.17.4 with updated container images and packages that address these vulnerabilities. Users of OpenShift Container Platform 4.17 are strongly advised to upgrade to this release using the OpenShift CLI or web console following the official upgrade documentation. The vendor manages remediation through these updated images and packages; no additional mitigations are specified beyond applying the update.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2024:8981
- Cve Count
- 2
- Additional Cves
- ["CVE-2024-47875"]
- Cvss Version
- null
Threat ID: 6a1f4e82e29bf47b5007cde0
Added to database: 6/2/2026, 9:43:30 PM
Last enriched: 6/2/2026, 9:46:05 PM
Last updated: 6/3/2026, 5:07:38 AM
Views: 3
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.