Fedora Account System
Red Hat Associate
Red Hat Customer
Windows Machine Config Operator (WMCO) opens SSH sessions to Windows worker nodes without validating the remote server identity. Sensitive node configuration material is transferred over those sessions during normal reconciliation. If an attacker can position themselves on the network path between WMCO and the intended Windows node, they may be able to impersonate the node and obtain credentials WMCO delivers during configuration.