Redhat

Openshift Container Platform

274 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.9

CVE-2023-48795

Medienbericht Exploit
  • EPSS 57.77%
  • Veröffentlicht 18.12.2023 16:15:10
  • Zuletzt bearbeitet 04.11.2025 22:15:55

The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client a...

5.4

CVE-2023-6134

Exploit
  • EPSS 1.41%
  • Veröffentlicht 14.12.2023 22:15:44
  • Zuletzt bearbeitet 21.11.2024 08:43:12

A flaw was found in Keycloak that prevents certain schemes in redirects, but permits them if a wildcard is appended to the token. This issue could allow an attacker to submit a specially crafted request leading to cross-site scripting (XSS) or furthe...

7.7

CVE-2023-6563

Exploit
  • EPSS 0.3%
  • Veröffentlicht 14.12.2023 18:15:45
  • Zuletzt bearbeitet 21.11.2024 08:44:06

An unconstrained memory consumption vulnerability was discovered in Keycloak. It can be triggered in environments which have millions of offline tokens (> 500,000 users with each having at least 2 saved sessions). If an attacker creates two or more u...

7.2

CVE-2023-5408

  • EPSS 0.3%
  • Veröffentlicht 02.11.2023 03:15:10
  • Zuletzt bearbeitet 21.11.2024 08:41:42

A privilege escalation flaw was found in the node restriction admission plugin of the kubernetes api server of OpenShift. A remote attacker who modifies the node role label could steer workloads from the control plane and etcd nodes onto different wo...

7.5

CVE-2023-44487

Warnung Medienbericht Exploit
  • EPSS 94.42%
  • Veröffentlicht 10.10.2023 14:15:10
  • Zuletzt bearbeitet 07.11.2025 19:00:41

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

5.5

CVE-2023-5366

  • EPSS 0.03%
  • Veröffentlicht 06.10.2023 18:15:12
  • Zuletzt bearbeitet 21.11.2024 08:41:37

A flaw was found in Open vSwitch that allows ICMPv6 Neighbor Advertisement packets between virtual machines to bypass OpenFlow rules. This issue may allow a local attacker to create specially crafted packets with a modified or spoofed target IP addre...

7.5

CVE-2022-3248

  • EPSS 0.05%
  • Veröffentlicht 05.10.2023 14:15:09
  • Zuletzt bearbeitet 21.11.2024 07:19:08

A flaw was found in OpenShift API, as admission checks do not enforce "custom-host" permissions. This issue could allow an attacker to violate the boundaries, as permissions will not be applied.

5.3

CVE-2022-4145

  • EPSS 0.08%
  • Veröffentlicht 05.10.2023 13:15:09
  • Zuletzt bearbeitet 21.11.2024 07:34:39

A content spoofing flaw was found in OpenShift's OAuth endpoint. This flaw allows a remote, unauthenticated attacker to inject text into a webpage, enabling the obfuscation of a phishing operation.

5.3

CVE-2023-3153

  • EPSS 0.07%
  • Veröffentlicht 04.10.2023 12:15:10
  • Zuletzt bearbeitet 21.11.2024 08:16:34

A flaw was found in Open Virtual Network where the service monitor MAC does not properly rate limit. This issue could allow an attacker to cause a denial of service, including on deployments with CoPP enabled and properly configured.

7.1

CVE-2023-2422

  • EPSS 0.29%
  • Veröffentlicht 04.10.2023 11:15:10
  • Zuletzt bearbeitet 21.11.2024 07:58:35

A flaw was found in Keycloak. A Keycloak server configured to support mTLS authentication for OAuth/OpenID clients does not properly verify the client certificate chain. A client that possesses a proper certificate can authorize itself as any other c...