Lucene search
K

169 matches found

Positive Technologies
Positive Technologies
added 2025/07/02 12:0 a.m.4 views

PT-2025-27605 · Red Hat · Red Hat Advanced Cluster Management

Name of the Vulnerable Software and Affected Versions: Red Hat Advanced Cluster Management versions 2.10 through 2.10.6 Red Hat Advanced Cluster Management versions 2.11 through 2.11.3 Red Hat Advanced Cluster Management versions 2.12 through 2.12.3 Description: A flaw in Red Hat Advanced Cluster...

5.5CVSS6.1AI score0.00123EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/06/04 9:17 p.m.12 views

Important: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.13.3 fixes and container updates

Red Hat Advanced Cluster Management for Kubernetes 2.13.3 General Availability release, with updates to container images and bug fixes. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a...

7.5CVSS6.7AI score0.00693EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2025/06/04 12:41 a.m.14 views

Important: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.9.9 bug fixes and container updates

Red Hat Advanced Cluster Management for Kubernetes 2.9.9 General Availability release, with updates to container images and bug fixes. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

7.5CVSS6.7AI score0.00693EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2025/05/07 4:17 p.m.24 views

Important: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.11.7 container updates

Red Hat Advanced Cluster Management for Kubernetes 2.11.7 General Availability release images, with updates to container images and bug fixes. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which give...

7.5CVSS6.7AI score0.00868EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/05/06 6:29 a.m.18 views

Important: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.10.8 container updates

Red Hat Advanced Cluster Management for Kubernetes 2.10.8 General Availability release images, which fix bugs and update container images. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a...

7.5CVSS6.7AI score0.00868EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/04/17 10:9 p.m.14 views

Important: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.12.3 container image updates

Red Hat Advanced Cluster Management for Kubernetes 2.12.3 General Availability release, with updates to container images. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

7.5CVSS6.8AI score0.00868EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2025/04/09 4:37 p.m.18 views

Important: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.13.2 container image updates

Red Hat Advanced Cluster Management for Kubernetes 2.13.2 General Availability release, with updates to container images. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

7.5CVSS6.7AI score0.00868EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2025/03/19 12:0 a.m.7 views

The vulnerability of the Hive software component used in the Kubernetes Multicluster Engine (MCE) and Advanced Cluster Management (ACM) allows a hacker to gain unauthorized access to the VCenter database.

The vulnerability of the Hive software components used in the Kubernetes Multicluster Engine MCE and Advanced Cluster Management ACM lies in the insecure storage of confidential information. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to th...

8.2CVSS7.4AI score0.00452EPSS
Exploits0References3
NVD
NVD
added 2025/03/17 5:15 p.m.9 views

CVE-2025-2241

A flaw was found in Hive, a component of Multicluster Engine MCE and Advanced Cluster Management ACM. This vulnerability causes VCenter credentials to be exposed in the ClusterProvision object after provisioning a VSphere cluster. Users with read access to ClusterProvision objects can extract...

8.2CVSS0.00452EPSS
Exploits0References3
CVE
CVE
added 2025/03/17 4:27 p.m.75 views

CVE-2025-2241

CVE-2025-2241 describes a vulnerability in Hive (MCE/ACM) where VCenter credentials are exposed in the ClusterProvision object after provisioning a vSphere cluster. Attackers with read access to ClusterProvision objects can extract credentials even without direct Kubernetes Secrets access, potent...

8.2CVSS6.5AI score0.00452EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/03/17 4:25 p.m.8 views

CVE-2025-2241

A flaw was found in Hive, a component of Multicluster Engine MCE and Advanced Cluster Management ACM. This vulnerability causes VCenter credentials to be exposed in the ClusterProvision object after provisioning a VSphere cluster. Users with read access to ClusterProvision objects can extract...

8.2CVSS6.5AI score0.00452EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/03/17 12:0 a.m.3 views

Red Hat Advanced Cluster Management和Red Hat Multicluster Engine 安全漏洞

Red Hat Advanced Cluster Management and Red Hat Multicluster Engine are both products of Red Hat, Inc.Red Hat Advanced Cluster Management is a console cluster control software.Red Hat Red Hat Advanced Cluster Management is a console cluster control software. A security vulnerability exists in Red...

8.2CVSS7.9AI score0.00452EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2025/01/30 9:30 p.m.22 views

Important: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.12.2 security and bug fix updates

Red Hat Advanced Cluster Management for Kubernetes 2.12.2 General Availability release images, which provide enhancements, bug fixes, security updates, and updated container images. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability...

9.1CVSS6.7AI score0.03153EPSS
Exploits2References11
RedHat Linux
RedHat Linux
added 2025/01/28 11:59 p.m.18 views

Important: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.11.5 bug fixes and container updates

Red Hat Advanced Cluster Management for Kubernetes 2.11.5 General Availability release images, which provide enhancements, bug fixes, and updated container images. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS...

9.1CVSS6.7AI score0.03153EPSS
Exploits2References5
NVD
NVD
added 2025/01/27 2:15 p.m.9 views

CVE-2022-4975

A flaw was found in the Red Hat Advanced Cluster Security RHACS portal. When rendering a table view in the portal, for example, on any of the /main/configmanagement/ endpoints, the front-end generates a DOM table-element id="pdf-table". This information is then populated with unsanitized data usi...

8.9CVSS0.00318EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/01/27 1:47 p.m.8 views

CVE-2022-4975 Rhacs: cross-site scripting in portal

A flaw was found in the Red Hat Advanced Cluster Security RHACS portal. When rendering a table view in the portal, for example, on any of the /main/configmanagement/ endpoints, the front-end generates a DOM table-element id="pdf-table". This information is then populated with unsanitized data usi...

8.9CVSS0.00318EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/01/27 1:47 p.m.3 views

CVE-2022-4975 Rhacs: cross-site scripting in portal

A flaw was found in the Red Hat Advanced Cluster Security RHACS portal. When rendering a table view in the portal, for example, on any of the /main/configmanagement/ endpoints, the front-end generates a DOM table-element id="pdf-table". This information is then populated with unsanitized data usi...

8.9CVSS8AI score0.00318EPSS
Exploits0References2
CVE
CVE
added 2025/01/27 1:47 p.m.43 views

CVE-2022-4975

The CVE-2022-4975 entry concerns Red Hat Advanced Cluster Security (RHACS) portal UI. Affected component: frontend rendering of table views (e.g., /main/configmanagement/*) where the portal creates a DOM table (id="pdf-table") and later populates it with data via innerHTML. Root cause: unsanitize...

8.9CVSS5.7AI score0.00318EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/01/27 12:0 a.m.3 views

PT-2025-1377 · Red Hat · Red Hat Advanced Cluster Security

Name of the Vulnerable Software and Affected Versions: Red Hat Advanced Cluster Security RHACS affected versions not specified Description: A flaw was found in the Red Hat Advanced Cluster Security RHACS portal. When rendering a table view in the portal, for example, on any of the...

8.9CVSS5.7AI score0.00318EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2025/01/23 11:30 p.m.24 views

Important: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.10.7 bug fixes and container updates

Red Hat Advanced Cluster Management for Kubernetes 2.10.7 General Availability release images, which provide enhancements, bug fixes, and updated container images. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS...

9.1CVSS6.7AI score0.03153EPSS
Exploits2References9
Rows per page
Query Builder