Redhat

Openshift

164 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.2

CVE-2024-3154

  • EPSS 0.38%
  • Veröffentlicht 26.04.2024 04:15:09
  • Zuletzt bearbeitet 15.04.2026 00:35:42

A flaw was found in cri-o, where an arbitrary systemd property can be injected via a Pod annotation. Any user who can create a pod with an arbitrary annotation may perform an arbitrary action on the host system.

6.2

CVE-2024-2905

  • EPSS 0.02%
  • Veröffentlicht 25.04.2024 18:15:08
  • Zuletzt bearbeitet 15.04.2026 00:35:42

A security vulnerability has been discovered within rpm-ostree, pertaining to the /etc/shadow file in default builds having the world-readable bit enabled. This issue arises from the default permissions being set at a higher level than recommended, p...

7.7

CVE-2024-1139

  • EPSS 0.17%
  • Veröffentlicht 25.04.2024 17:15:47
  • Zuletzt bearbeitet 15.04.2026 00:35:42

A credentials leak vulnerability was found in the cluster monitoring operator in OCP. This issue may allow a remote attacker who has basic login credentials to check the pod manifest to discover a repository pull secret.

7.5

CVE-2023-6596

  • EPSS 0.06%
  • Veröffentlicht 25.04.2024 16:15:10
  • Zuletzt bearbeitet 15.04.2026 00:35:42

An incomplete fix was shipped for the Rapid Reset (CVE-2023-44487/CVE-2023-39325) vulnerability for an OpenShift Containers.

9.3

CVE-2024-1485

  • EPSS 2.11%
  • Veröffentlicht 14.02.2024 00:15:46
  • Zuletzt bearbeitet 24.03.2026 12:16:11

A flaw was found in the decompression function of registry-support. This issue can be triggered if an unauthenticated remote attacker tricks a user into parsing a devfile which uses the `parent` or `plugin` keywords. This could download a malicious a...

7.5

CVE-2023-44487

Warnung Medienbericht Exploit
  • EPSS 94.4%
  • Veröffentlicht 10.10.2023 14:15:10
  • Zuletzt bearbeitet 12.05.2026 15:10:32

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

6.3

CVE-2023-0229

  • EPSS 0.1%
  • Veröffentlicht 26.01.2023 21:18:06
  • Zuletzt bearbeitet 01.04.2025 15:15:57

A flaw was found in github.com/openshift/apiserver-library-go, used in OpenShift 4.12 and 4.11, that contains an issue that can allow low-privileged users to set the seccomp profile for pods they control to "unconfined." By default, the seccomp profi...

5.3

CVE-2023-0296

  • EPSS 0.16%
  • Veröffentlicht 17.01.2023 21:15:15
  • Zuletzt bearbeitet 21.11.2024 07:36:55

The Birthday attack against 64-bit block ciphers flaw (CVE-2016-2183) was reported for the health checks port (9979) on etcd grpc-proxy component. Even though the CVE-2016-2183 has been fixed in the etcd components, to enable periodic health checks f...

7.4

CVE-2022-3259

  • EPSS 0.13%
  • Veröffentlicht 09.12.2022 18:15:19
  • Zuletzt bearbeitet 22.04.2025 21:15:43

Openshift 4.9 does not use HTTP Strict Transport Security (HSTS) which may allow man-in-the-middle (MITM) attacks.

4.8

CVE-2022-3260

Exploit
  • EPSS 0.17%
  • Veröffentlicht 08.12.2022 16:15:13
  • Zuletzt bearbeitet 23.04.2025 16:15:24

The response header has not enabled X-FRAME-OPTIONS, Which helps prevents against Clickjacking attack.. Some browsers would interpret these results incorrectly, allowing clickjacking attacks.