Redhat

Openshift Container Platform

321 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.11%
  • Veröffentlicht 29.06.2026 18:44:24
  • Zuletzt bearbeitet 08.07.2026 03:34:36

A flaw was found in p11-kit. The RPC message attribute parsing functions p11_rpc_message_get_attribute() and p11_rpc_message_get_attribute_array_value() form a mutually-recursive call chain with no recursion depth limit when processing nested CKA_WRA...

  • EPSS 0.11%
  • Veröffentlicht 29.06.2026 08:06:09
  • Zuletzt bearbeitet 08.07.2026 03:37:21

A flaw was found in the libblkid library of util-linux. During nested partition probing, the BSD, Minix, Solaris x86, and UnixWare partition probers cache a raw pointer to a parent partition entry in a dynamically allocated array. When subsequent par...

Exploit
  • EPSS 0.24%
  • Veröffentlicht 23.06.2026 03:36:22
  • Zuletzt bearbeitet 08.07.2026 14:17:14

A flaw was found in OpenSSH. A malicious SSH server can exploit a double free vulnerability in the Diffie-Hellman Group Exchange (DH-GEX) client path. This occurs during FIPS (Federal Information Processing Standards) mode known-group validation when...

  • EPSS 0.4%
  • Veröffentlicht 22.06.2026 13:55:05
  • Zuletzt bearbeitet 08.07.2026 15:10:32

A heap-based buffer overflow was found in dnsmasq. When DNSSEC validation and query logging are both enabled, logging of DS or DNSKEY replies containing unsupported algorithm or digest types can cause dnsmasq to write past the end of an internal logg...

  • EPSS 0.18%
  • Veröffentlicht 22.06.2026 12:46:09
  • Zuletzt bearbeitet 08.07.2026 15:10:50

A flaw was found in the Windows Machine Config Operator (WMCO) for Red Hat OpenShift Container Platform. WMCO establishes SSH connections to Windows worker nodes without verifying the remote server host key. An adjacent-network attacker who can inter...

  • EPSS 0.08%
  • Veröffentlicht 22.06.2026 12:46:04
  • Zuletzt bearbeitet 08.07.2026 15:10:59

A flaw was found in the Windows Machine Config Operator (WMCO) for Red Hat OpenShift Container Platform. The WICD CSR auto-approver validates that a Certificate Signing Request contains the organization system:wicd-nodes but does not reject additiona...

  • EPSS 0.15%
  • Veröffentlicht 02.06.2026 07:22:26
  • Zuletzt bearbeitet 02.07.2026 12:16:56

The Route OpenShift resource allows to define routes to make pods reachable at a subdomain through HAProxy. It was found that the checks performed on the spec.path YAML stanza in a Route document was insufficient and could allow a controlled injectio...

  • EPSS 0.23%
  • Veröffentlicht 01.06.2026 13:19:29
  • Zuletzt bearbeitet 08.06.2026 14:09:45

A flaw was found in OpenShift Container Platform. Completed pods with restartPolicy: Never do not count toward ResourceQuota pod limits, and Kubernetes events are not quota-scoped. A non-privileged user who can create pods in a namespace can exploit ...

  • EPSS 0.23%
  • Veröffentlicht 29.05.2026 09:50:44
  • Zuletzt bearbeitet 30.06.2026 03:19:42

A flaw was found in the OpenShift Router. A user with EndpointSlice write access can exploit this vulnerability by creating a Service backed by an FQDN (Fully Qualified Domain Name) EndpointSlice that resolves to a cloud metadata endpoint. This allow...

  • EPSS 0.23%
  • Veröffentlicht 29.05.2026 09:50:44
  • Zuletzt bearbeitet 30.06.2026 03:20:22

A flaw was found in the OpenShift Router. When a Route has `insecureEdgeTerminationPolicy` set to Allow, the HTTP frontend does not remove `X-SSL-Client-*` headers from incoming requests. This allows an unauthenticated attacker to send plain HTTP req...