CVE-2024-9676
- EPSS 2.67%
- Published 15.10.2024 16:15:06
- Last modified 03.04.2025 02:15:19
A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the containers/storage library can cause Podman, Buildah, and CRI-O to hang and result in a denial of service via OOM kill when running a malicious image us...
CVE-2024-1725
- EPSS 0.14%
- Published 07.03.2024 20:15:50
- Last modified 26.03.2025 05:15:40
A flaw was found in the kubevirt-csi component of OpenShift Virtualization's Hosted Control Plane (HCP). This issue could allow an authenticated attacker to gain access to the root HCP worker node's volume by creating a custom Persistent Volume that ...
CVE-2023-5625
- EPSS 0.08%
- Published 01.11.2023 14:15:38
- Last modified 06.12.2024 11:15:07
A regression was introduced in the Red Hat build of python-eventlet due to a change in the patch application strategy, resulting in a patch for CVE-2021-21419 not being applied for all builds of all products.
CVE-2022-4318
- EPSS 0.04%
- Published 25.09.2023 20:15:10
- Last modified 21.11.2024 07:35:01
A vulnerability was found in cri-o. This issue allows the addition of arbitrary lines into /etc/passwd by use of a specially crafted environment variable.
CVE-2023-3089
- EPSS 0.05%
- Published 05.07.2023 13:15:09
- Last modified 21.11.2024 08:16:25
A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that, when FIPS mode was enabled, not all of the cryptographic modules in use were FIPS-validated.