CVE-2024-6501
- EPSS 0.45%
- Veröffentlicht 09.07.2024 20:15:12
- Zuletzt bearbeitet 15.04.2026 00:35:42
A flaw was found in NetworkManager. When a system running NetworkManager with DEBUG logs enabled and an interface eth1 configured with LLDP enabled, a malicious user could inject a malformed LLDP packet. NetworkManager would crash, leading to a denia...
CVE-2024-4369
- EPSS 0.69%
- Veröffentlicht 01.05.2024 00:15:06
- Zuletzt bearbeitet 15.04.2026 00:35:42
An information disclosure flaw was found in OpenShift's internal image registry operator. The AZURE_CLIENT_SECRET can be exposed through an environment variable defined in the pod definition, but is limited to Azure environments. An attacker controll...
CVE-2024-3154
- EPSS 1.42%
- Veröffentlicht 26.04.2024 04:15:09
- Zuletzt bearbeitet 15.04.2026 00:35:42
A flaw was found in cri-o, where an arbitrary systemd property can be injected via a Pod annotation. Any user who can create a pod with an arbitrary annotation may perform an arbitrary action on the host system.
CVE-2024-2905
- EPSS 0.33%
- Veröffentlicht 25.04.2024 18:15:08
- Zuletzt bearbeitet 15.04.2026 00:35:42
A security vulnerability has been discovered within rpm-ostree, pertaining to the /etc/shadow file in default builds having the world-readable bit enabled. This issue arises from the default permissions being set at a higher level than recommended, p...
CVE-2024-1139
- EPSS 0.89%
- Veröffentlicht 25.04.2024 17:15:47
- Zuletzt bearbeitet 15.04.2026 00:35:42
A credentials leak vulnerability was found in the cluster monitoring operator in OCP. This issue may allow a remote attacker who has basic login credentials to check the pod manifest to discover a repository pull secret.
CVE-2023-6596
- EPSS 0.79%
- Veröffentlicht 25.04.2024 16:15:10
- Zuletzt bearbeitet 15.04.2026 00:35:42
An incomplete fix was shipped for the Rapid Reset (CVE-2023-44487/CVE-2023-39325) vulnerability for an OpenShift Containers.
CVE-2024-1485
- EPSS 0.94%
- Veröffentlicht 14.02.2024 00:15:46
- Zuletzt bearbeitet 24.03.2026 12:16:11
A flaw was found in the decompression function of registry-support. This issue can be triggered if an unauthenticated remote attacker tricks a user into parsing a devfile which uses the `parent` or `plugin` keywords. This could download a malicious a...
CVE-2023-44487
- EPSS 100%
- Veröffentlicht 10.10.2023 14:15:10
- Zuletzt bearbeitet 12.05.2026 15:10:32
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2023-0229
- EPSS 0.65%
- Veröffentlicht 26.01.2023 21:18:06
- Zuletzt bearbeitet 01.04.2025 15:15:57
A flaw was found in github.com/openshift/apiserver-library-go, used in OpenShift 4.12 and 4.11, that contains an issue that can allow low-privileged users to set the seccomp profile for pods they control to "unconfined." By default, the seccomp profi...
CVE-2023-0296
- EPSS 0.32%
- Veröffentlicht 17.01.2023 21:15:15
- Zuletzt bearbeitet 21.11.2024 07:36:55
The Birthday attack against 64-bit block ciphers flaw (CVE-2016-2183) was reported for the health checks port (9979) on etcd grpc-proxy component. Even though the CVE-2016-2183 has been fixed in the etcd components, to enable periodic health checks f...