169 matches found
PT-2025-27605 · Red Hat · Red Hat Advanced Cluster Management
Name of the Vulnerable Software and Affected Versions: Red Hat Advanced Cluster Management versions 2.10 through 2.10.6 Red Hat Advanced Cluster Management versions 2.11 through 2.11.3 Red Hat Advanced Cluster Management versions 2.12 through 2.12.3 Description: A flaw in Red Hat Advanced Cluster...
Important: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.13.3 fixes and container updates
Red Hat Advanced Cluster Management for Kubernetes 2.13.3 General Availability release, with updates to container images and bug fixes. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a...
Important: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.9.9 bug fixes and container updates
Red Hat Advanced Cluster Management for Kubernetes 2.9.9 General Availability release, with updates to container images and bug fixes. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...
Important: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.11.7 container updates
Red Hat Advanced Cluster Management for Kubernetes 2.11.7 General Availability release images, with updates to container images and bug fixes. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which give...
Important: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.10.8 container updates
Red Hat Advanced Cluster Management for Kubernetes 2.10.8 General Availability release images, which fix bugs and update container images. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a...
Important: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.12.3 container image updates
Red Hat Advanced Cluster Management for Kubernetes 2.12.3 General Availability release, with updates to container images. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
Important: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.13.2 container image updates
Red Hat Advanced Cluster Management for Kubernetes 2.13.2 General Availability release, with updates to container images. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
The vulnerability of the Hive software component used in the Kubernetes Multicluster Engine (MCE) and Advanced Cluster Management (ACM) allows a hacker to gain unauthorized access to the VCenter database.
The vulnerability of the Hive software components used in the Kubernetes Multicluster Engine MCE and Advanced Cluster Management ACM lies in the insecure storage of confidential information. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to th...
CVE-2025-2241
A flaw was found in Hive, a component of Multicluster Engine MCE and Advanced Cluster Management ACM. This vulnerability causes VCenter credentials to be exposed in the ClusterProvision object after provisioning a VSphere cluster. Users with read access to ClusterProvision objects can extract...
CVE-2025-2241
CVE-2025-2241 describes a vulnerability in Hive (MCE/ACM) where VCenter credentials are exposed in the ClusterProvision object after provisioning a vSphere cluster. Attackers with read access to ClusterProvision objects can extract credentials even without direct Kubernetes Secrets access, potent...
CVE-2025-2241
A flaw was found in Hive, a component of Multicluster Engine MCE and Advanced Cluster Management ACM. This vulnerability causes VCenter credentials to be exposed in the ClusterProvision object after provisioning a VSphere cluster. Users with read access to ClusterProvision objects can extract...
Red Hat Advanced Cluster Management和Red Hat Multicluster Engine 安全漏洞
Red Hat Advanced Cluster Management and Red Hat Multicluster Engine are both products of Red Hat, Inc.Red Hat Advanced Cluster Management is a console cluster control software.Red Hat Red Hat Advanced Cluster Management is a console cluster control software. A security vulnerability exists in Red...
Important: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.12.2 security and bug fix updates
Red Hat Advanced Cluster Management for Kubernetes 2.12.2 General Availability release images, which provide enhancements, bug fixes, security updates, and updated container images. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability...
Important: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.11.5 bug fixes and container updates
Red Hat Advanced Cluster Management for Kubernetes 2.11.5 General Availability release images, which provide enhancements, bug fixes, and updated container images. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS...
CVE-2022-4975
A flaw was found in the Red Hat Advanced Cluster Security RHACS portal. When rendering a table view in the portal, for example, on any of the /main/configmanagement/ endpoints, the front-end generates a DOM table-element id="pdf-table". This information is then populated with unsanitized data usi...
CVE-2022-4975 Rhacs: cross-site scripting in portal
A flaw was found in the Red Hat Advanced Cluster Security RHACS portal. When rendering a table view in the portal, for example, on any of the /main/configmanagement/ endpoints, the front-end generates a DOM table-element id="pdf-table". This information is then populated with unsanitized data usi...
CVE-2022-4975 Rhacs: cross-site scripting in portal
A flaw was found in the Red Hat Advanced Cluster Security RHACS portal. When rendering a table view in the portal, for example, on any of the /main/configmanagement/ endpoints, the front-end generates a DOM table-element id="pdf-table". This information is then populated with unsanitized data usi...
CVE-2022-4975
The CVE-2022-4975 entry concerns Red Hat Advanced Cluster Security (RHACS) portal UI. Affected component: frontend rendering of table views (e.g., /main/configmanagement/*) where the portal creates a DOM table (id="pdf-table") and later populates it with data via innerHTML. Root cause: unsanitize...
PT-2025-1377 · Red Hat · Red Hat Advanced Cluster Security
Name of the Vulnerable Software and Affected Versions: Red Hat Advanced Cluster Security RHACS affected versions not specified Description: A flaw was found in the Red Hat Advanced Cluster Security RHACS portal. When rendering a table view in the portal, for example, on any of the...
Important: Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.10.7 bug fixes and container updates
Red Hat Advanced Cluster Management for Kubernetes 2.10.7 General Availability release images, which provide enhancements, bug fixes, and updated container images. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS...