Filters
Versions
Redhat Openshift Container PlatformGraphql: denial of service (dos) vulnerability via graphql batching
6.5
First published (updated )
Redhat Openshift Container PlatformGraphql: information disclosure via graphql introspection in openshift
5.3
First published (updated )
Redhat Openshift Container PlatformKeycloak: vulnerable redirect uri validation results in open redirec
6.8
EPSS
1.01%
First published (updated )
Redhat Openshift Container PlatformOpenshift-console: unauthenticated installation of helm charts
6.5
EPSS
0.05%
First published (updated )
maven/org.keycloak:keycloak-servicesKeycloak: potential bypass of brute force protection
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Redhat Openstack PlatformPrefix Truncation Attacks in SSH Specification (Terrapin Attack)
5.9
First published (updated )
Redhat Single Sign-onKeycloak: reflected xss via wildcard in oidc redirect_uri
5.4
EPSS
0.10%
First published (updated )
Redhat Openshift Container PlatformOperator: passwords defined in secrets shown in statefulset yaml
5.5
First published (updated )
Redhat Openshift Container PlatformOperator: plaintext password in operator log
5.5
First published (updated )
Ovn Open Virtual NetworkService monitor mac flow is not rate limited
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Redhat Openshift OsinOpenShift OSIN CheckClientSecret timing discrepancy
5.9
First published (updated )
redhat/haproxyAn uncontrolled resource consumption vulnerability was discovered in HAProxy which could crash the s…
6.5
First published (updated )
redhat/rh-sso7-keycloakKeycloak: session takeover with oidc offline refreshtokens
6.8
First published (updated )
Redhat Openshift Container PlatformCri-o: security regression of cve-2022-27652
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Fedoraproject FedoraAn Improper Certificate Validation attack was found in Openshift. A re-encrypt Route with destinatio…
6.5
First published (updated )
Redhat Openshift Container PlatformA user can craft a route that injects a bogus entry into one of the HAProxy configuration files. Th…
6.3
First published (updated )
redhat/cri-oA flaw was found in cri-o, where containers were incorrectly started with non-empty default permissi…
5.3
First published (updated )
Openstack Oslo.utilsmask_passwords doesn't mask characters following a " so if a user has a password containing a " in t…
First published (updated )
Dpdk Data Plane Development KitA flaw was found in dpdk. This flaw allows a malicious vhost-user master to attach an unexpected num…
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
redhat/cri-oAn incorrect sysctls validation vulnerability was found in CRI-O. The sysctls from the list of "safe…
4.9
First published (updated )
redhat/rh-sso7-keycloakA flaw was found in keycloak, where the default ECP binding flow allows other authentication flows t…
6.8
First published (updated )
redhat/grub2A flaw was found in grub2 when handling a PNG image header. When decoding the data contained in the …
6.9
First published (updated )
Redhat Openshift Container PlatformLast updated 25 October 2024
5.5
First published (updated )
redhat/openshift/assisted-installerA vulnerability was found in the Openshift API - Assisted Installer application. The Discovery ISO l…
5.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Redhat Openshift Container PlatformWhen running OpenShift with Red Hat supported network types, applications in the cluster are blocked…
4.3
First published (updated )
redhat/elasticsearch-operator-containerThe elasticsearch-operator does not validate the namespace where kibana logging resource is created …
6.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
redhat/grub2GRUB2 contained integer overflows when handling the initrd command, leading to a heap-based buffer overflow.
6.4
First published (updated )
redhat/grub2GRUB2 contains a race condition leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executing.
6.4
First published (updated )
redhat/grub2GRUB2: avoid loading unsigned kernels when GRUB is booted directly under secureboot without shim
6.4
First published (updated )
Redhat Openshift Container PlatformThe Restricted Security Context Constraints (SCC) allows pods to craft custom network packets. An at…
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
redhat/heketiWhile requesting a new block volume creation, at Heketi we dump the sensitive gluster-block volumes …
5.5
First published (updated )
Redhat Openshift Container PlatformA flaw was found in OpenShift Container Platform where OAuth tokens are not encrypted when the encry…
6.6
First published (updated )
redhat/containernetworking-pluginsCNI network plugins create network bridges that IPv6 router advertisements by default. An attacker a…
First published (updated )
redhat/openshift-ansibleOpenShift Container Platform (OCP) 3.11 was too permissive in the way it specified CORS allowed orig…
5.9
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
redhat/podmanpodman incorrectly allows containers, when created, to populate volumes that already have existing d…
5.9
First published (updated )
Redhat Openshift Container PlatformIt was discovered that kibana could be opened in an iframe, which made it possible to intercept and …
4.3
First published (updated )
Redhat Openshift Container PlatformOpenShift Container Platform 4 does not sanitize secret data written to static pod logs when the log…
6.5
First published (updated )
Kubernetes External-provisionerKubernetes CSI volume snapshot, cloning and resizing features can result in unauthorized volume data access or mutation
6.5
First published (updated )
Redhat Openshift Container PlatformCri-o pods didn't provide sufficient isolation between the workload and infra containers such that w…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Fedoraproject Fedorasystemd-resolved does not properly enforce any access control to its dbus methods, allowing any unpr…
5.3
First published (updated )
Redhat Openshift Container PlatformThe basic-user RABC role in OpenShift Container Platform doesn't sufficiently protect the GlusterFS …
6.5
First published (updated )
Kubernetes KubernetesKubernetes client-go logs authorization headers at debug verbosity levels
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.