Filters
Redhat Openshift Container PlatformOpenshift-console: unauthenticated installation of helm charts
6.5
EPSS
0.05%
First published (updated )
Redhat Openshift Container PlatformCri-o: malicious container can create symlink on host
8.1
EPSS
0.04%
First published (updated )
go/github.com/cri-o/cri-oCri-o: pods are able to break out of resource confinement on cgroupv2
7.5
EPSS
0.06%
First published (updated )
Redhat Openshift Container PlatformCri-o: security regression of cve-2022-27652
5.3
First published (updated )
Redhat Enterprise LinuxAn incorrect handling of the supplementary groups in the Podman container engine might lead to the s…
7.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
redhat/cri-oA vulnerability was found in CRI-O that causes memory or disk space exhaustion on the node for anyon…
7.8
First published (updated )
Redhat Openshift Container PlatformA user can craft a route that injects a bogus entry into one of the HAProxy configuration files. Th…
6.3
First published (updated )
redhat/cri-oA flaw was found in cri-o, where containers were incorrectly started with non-empty default permissi…
5.3
First published (updated )
Redhat Enterprise LinuxPodman versions prior to 1.7.0 ignore file permissions for non-root users running in a privileged co…
7
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
redhat/grafanaA signature verification vulnerability exists in crewjam/saml. This flaw allows an attacker to bypas…
10
First published (updated )
ubuntu/pygmentsAn infinite loop in SMLLexer in Pygments versions 1.5 to 2.7.3 may lead to denial of service when pe…
7.5
First published (updated )
Redhat Openshift Container PlatformThe Restricted Security Context Constraints (SCC) allows pods to craft custom network packets. An at…
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ubuntu/haproxyIn hpack_dht_insert in hpack-tbl.c in the HPACK decoder in HAProxy 1.8 through 2.x before 2.1.4, a r…
8.8
First published (updated )
Redhat Openshift Container PlatformIt has been found that in openshift-enterprise version 3.11 and openshift-enterprise versions 4.1 up…
7
First published (updated )
redhat/openshift-ansibleOpenShift Container Platform (OCP) 3.11 was too permissive in the way it specified CORS allowed orig…
5.9
First published (updated )
Redhat Openshift Container PlatformAn insecure modification vulnerability in the /etc/passwd file was found in the container openshift/…
7
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Redhat Openshift Container PlatformA flaw was found during the upgrade of an existing OpenShift Container Platform 3.x cluster. Using C…
8.8
First published (updated )
Kubernetes External-provisionerKubernetes CSI volume snapshot, cloning and resizing features can result in unauthorized volume data access or mutation
6.5
First published (updated )
Redhat Openshift Container PlatformCri-o pods didn't provide sufficient isolation between the workload and infra containers such that w…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Kubernetes KubernetesKubernetes API Server JSON/YAML parsing vulnerable to resource exhaustion attack
7.5
First published (updated )
Fedoraproject FedoraA flaw was found in ghostscript, versions 9.x before 9.50, in the setsystemparams procedure where it…
9.8
First published (updated )
Fedoraproject FedoraA flaw was found in, ghostscript versions prior to 9.50, in the .pdfexectoken and other procedures w…
7.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Fedoraproject FedoraA flaw was found in, ghostscript versions prior to 9.50, in the .pdf_hook_DSC_Creator procedure wher…
7.8
First published (updated )
Redhat Openshift Container PlatformThe basic-user RABC role in OpenShift Container Platform doesn't sufficiently protect the GlusterFS …
6.5
First published (updated )
Kubernetes KubernetesKubernetes client-go logs authorization headers at debug verbosity levels
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Kubernetes Kuberneteskubectl cp allows symlink directory traversal
6.5
First published (updated )
F5 Big-ip Local Traffic ManagerSome HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service
7.8
First published (updated )
Redhat Openshift Container PlatformA missing permission check in Jenkins Pipeline: Shared Groovy Libraries Plugin 2.14 and earlier allo…
4.3
First published (updated )
Redhat Openshift Container PlatformIncorrect Type Cast
8.8
First published (updated )
Redhat Openshift Container PlatformA sandbox bypass vulnerability in Jenkins Script Security Plugin 1.61 and earlier related to the han…
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Kubernetes KubernetesKubernetes kube-apiserver allows access to custom resources via wrong scope
8.1
First published (updated )
Oracle Banking PlatformiTMSTransporter. Multiple issues were addressed with updating FasterXML jackson-databind and Apache …
9.8
First published (updated )
Jenkins JenkinsA vulnerability in the Stapler web framework used in Jenkins 2.185 and earlier, LTS 2.176.1 and earl…
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Redhat Openshift Container Platformkubectl creates world-writeable cached schema files
First published (updated )
Redhat Openshift Container PlatformHeketi is used to manage GlusterFS nodes and volumes. The default configuration of Heketi does not r…
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.