Redhat

Openshift Container Platform

272 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2025-26465

Media report
  • EPSS 58.35%
  • Published 18.02.2025 19:15:29
  • Last modified 26.09.2025 07:15:41

A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle attack can be performed by a malicious machine impersonating a legit server. This issue occurs due to how OpenSSH mishandles error codes in spec...

6.6

CVE-2025-0750

  • EPSS 0.12%
  • Published 28.01.2025 10:15:09
  • Last modified 11.02.2025 12:15:34

A vulnerability was found in CRI-O. A path traversal issue in the log management functions (UnMountPodLogs and LinkContainerLogs) may allow an attacker with permissions to create and delete Pods to unmount arbitrary host paths, leading to node-level ...

7.5

CVE-2024-12085

Exploit
  • EPSS 9.67%
  • Published 14.01.2025 18:15:25
  • Last modified 12.08.2025 21:15:27

A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate the checksum length (s2length) to cause a comparison between a checksum and uninitialized memory and leak one byte of un...

7.5

CVE-2024-12088

  • EPSS 0.72%
  • Published 14.01.2025 18:15:25
  • Last modified 12.08.2025 21:15:28

A flaw was found in rsync. When using the `--safe-links` option, the rsync client fails to properly verify if a symbolic link destination sent from the server contains another symbolic link within it. This results in a path traversal vulnerability, w...

6.5

CVE-2024-12698

  • EPSS 0.19%
  • Published 18.12.2024 05:15:07
  • Last modified 25.02.2025 08:15:28

An incomplete fix for ose-olm-catalogd-container was issued for the Rapid Reset Vulnerability (CVE-2023-39325/CVE-2023-44487) where only unauthenticated streams were protected, not streams created by authenticated sources.

5.3

CVE-2024-6538

  • EPSS 0.21%
  • Published 25.11.2024 07:15:06
  • Last modified 13.06.2025 06:15:21

A flaw was found in OpenShift Console. A Server Side Request Forgery (SSRF) attack can happen if an attacker supplies all or part of a URL to the server to query. The server is considered to be in a privileged network position and can often reach exp...

7.7

CVE-2024-0793

  • EPSS 0.14%
  • Published 17.11.2024 11:15:06
  • Last modified 18.11.2024 17:11:17

A flaw was found in kube-controller-manager. This issue occurs when the initial application of a HPA config YAML lacking a .spec.behavior.scaleUp block causes a denial of service due to KCM pods going into restart churn.

4.9

CVE-2024-11217

  • EPSS 0.16%
  • Published 15.11.2024 21:15:06
  • Last modified 18.11.2024 17:11:56

A vulnerability was found in the OAuth-server. OAuth-server logs the OAuth2 client secret when the logLevel is Debug higher for OIDC/GitHub/GitLab/Google IDPs login options.

6.5

CVE-2024-50311

  • EPSS 0.09%
  • Published 22.10.2024 14:15:19
  • Last modified 25.02.2025 08:15:29

A denial of service (DoS) vulnerability was found in OpenShift. This flaw allows attackers to exploit the GraphQL batching functionality. The vulnerability arises when multiple queries can be sent within a single request, enabling an attacker to subm...

5.3

CVE-2024-50312

  • EPSS 0.07%
  • Published 22.10.2024 14:15:19
  • Last modified 15.01.2025 02:15:26

A vulnerability was found in GraphQL due to improper access controls on the GraphQL introspection query. This flaw allows unauthorized users to retrieve a comprehensive list of available queries and mutations. Exposure to this flaw increases the atta...